Trojan-Spy:W32/Zbot.BBHD
Posted: March 14, 2013
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
Threat Level: | 9/10 |
---|---|
Infected PCs: | 103 |
First Seen: | March 14, 2013 |
---|---|
Last Seen: | June 16, 2022 |
OS(es) Affected: | Windows |
Trojan-Spy:W32/Zbot.BBHD is a variant of Zbot or Zeus, a notorious banking Trojan, that's distributed by way of e-mail spam that claims to be sent by the LogMeIn website team. LogMeIn (a site that specializes in providing remote access services for PC users) has not reported any hack-related attack of their user database, but users of LogMeIn appear to be disproportionately targeted by these Trojan-Spy:W32/Zbot.BBHD e-mails – potentially after having been harvested through generalized phishing mechanisms. SpywareRemove.com malware analysts can recommend ways of avoiding a Trojan-Spy:W32/Zbot.BBHD infection at all, but if your PC is infected by Trojan-Spy:W32/Zbot.BBHD, you should use the most competent anti-malware products on-hand to delete Trojan-Spy:W32/Zbot.BBHD and restore the privacy of your computer.
Trojan-Spy:W32/Zbot.BBHD: a Fake Account Lock for Covering Your PC's All-Too-Real Peril
Along with such ignominious past examples as Mal/Zbot-JG, Mal/Zbot-FV, Troj/Zbot-DSP, Trojan-Spy.Win32.Zbot.bfur, TSPY_ZBOT.JMO and TSPY_ZBOT.FAZ, Trojan-Spy:W32/Zbot.BBHD is a variant of the banking Trojan Zeus. Like its fellows, Trojan-Spy:W32/Zbot.BBHD is designed to steal bank account information by injecting malicious code into your PC's normal memory processes, and may even alter the contents of a web page to do so. Trojan-Spy:W32/Zbot.BBHD also may be identified by other names, such as UDS:DangerousObject.Multi.Generic, Trojan.Win32.Agent.AMN(A), Troj/Agent-AANP, Win32/Kryptik.ASTO or, simply, Zbot.
SpywareRemove.com malware experts have seen previous members of the Zeus or Zbot family being distributed by e-mail, such as in the case of Trojan PWS-Zbot.gen.cc and a fake DHL Express spam e-mail, but Trojan-Spy:W32/Zbot.BBHD's e-mails set themselves apart by being delivered primarily to users of the LogMeIn website. These e-mails, which resemble warnings about security account locks to stop an unauthorized attempt to use your LogMeIn account, ask you to go after a link to a chart that can help you resolve your problem. However, the link, of course, doesn't lead you to the LogMeIn site, but to a ZIP-format Trojan-Spy:W32/Zbot.BBHD installer.
What Trojan-Spy:W32/Zbot.BBHD's Also Grabbing After It Takes Your Trust
After having persuaded you to install it without your even realizing that you're doing so, Trojan-Spy:W32/Zbot.BBHD will create a backdoor through which Trojan-Spy:W32/Zbot.BBHD may funnel stolen information or download other malware to be installed. Although you may be able to notice some discrepancies in your PC's resource allocation (such as unusual RAM expenditures), typically, SpywareRemove.com malware researchers warn that there aren't any visible symptoms for Trojan-Spy:W32/Zbot.BBHD's attacks.
The primary target for most Zbot variants like Trojan-Spy:W32/Zbot.BBHD is to steal information that's used to log in to bank websites, which will allow Trojan-Spy:W32/Zbot.BBHD to transfer money to criminals without your consent. However, other personal information, including credit card numbers, phone numbers, e-mail addresses and even any information that's typed through your keyboard also may be stolen by Trojan-Spy:W32/Zbot.BBHD.
Since Trojan-Spy:W32/Zbot.BBHD is considered a high-level threat to your computer and your privacy, SpywareRemove.com malware experts suggest finding and removing Trojan-Spy:W32/Zbot.BBHD with anti-malware software ASAP. However, deleting e-mail spam and manually navigating to trusted web addresses are surer methods of protecting your PC that will stop Trojan-Spy:W32/Zbot.BBHD from being installed (at least, by this confirmed infection vector).
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:logmein_unlock_form.zip
File name: logmein_unlock_form.zipMime Type: unknown/zip
Group: Malware file
logmein_unlock_form.pif
File name: logmein_unlock_form.pifMime Type: unknown/pif
Group: Malware file
This really answered my downside, thank you!