We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
TrojanSpy:Win32/Bancos.AZG
Detected by Microsoft Defender Antivirus
Aliases: Trojan-Downloader.Win32.Banload.egc (Kaspersky) PWS-Banker.dldr (McAfee)
Summary
TrojanSpy:Win32/Bancos.AZG is a member of a family of data-stealing trojans that captures users' online banking credentials of customers of Brazilian banks, such as their account login names and passwords. This trojan sends captured information to the attacker via a rudimentary TCP chat server implementation.
Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742). For more information, see http://www.microsoft.com/protect/computer/viruses/vista.mspx.
Follow us
