Home Malware Programs Trojans Trojan-Banker.Win32.Banz

Trojan-Banker.Win32.Banz

Posted: January 20, 2011

Trojan-Banker.Win32.Banz is a malicious Trojan designed to steal banking details. Trojan-Banker.Win32.Banz uses stealth tactics to enter the PC before downloading other harmful files from the Internet. Trojan-Banker.Win32.Banz steals financial data like credit card numbers and online banking login details by taking screen snapshots of user activity. Trojan-Banker.Win32.Banz also downloads additional components and poses a severe security risk to computer safety.

Symptoms include system depreciation, loss of important documents and files and eventually a system crash will occur. Trojan-Banker.Win32.Banz should be removed immediately. Do not give this malicious cyber pest a chance to spread. Experts recommend using a registered malware remover which ranks high in the computer security world.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 %Temp%\89953907

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\Enigma ProtectorHKEY_CURRENT_USER\Software\Enigma Protector\1CB7F0C645B621D6-C31482C95F0CE628HKEY_CURRENT_USER\Software\Enigma Protector\1CB7F0C645B621D6-C31482C95F0CE628\0E08600E70B68800-992CFD5F9E3D3203HKEY..\..\..\..{RegistryKeys}HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\bord_007HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\bord_007\EnumHKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\bord_007\SecurityHKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BORD_007HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\bord_007HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\bord_007\EnumHKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\bord_007\Security
Loading...