JS_BROBAN.SM1
March 25, 2015
ALIASES:
TrojanSpy:JS/BrobanJad.A(Microsoft);Trojan.JS.Banker(Ikarus)
PLATFORM:
Windows
OVERALL RISK RATING:
DAMAGE POTENTIAL:
DISTRIBUTION POTENTIAL:
REPORTED INFECTION:
INFORMATION EXPOSURE:
Threat Type: Spyware
Destructiveness: No
Encrypted:
In the wild: Yes
OVERVIEW
This spyware may be hosted on a website and run when a user accesses the said website.
TECHNICAL DETAILS
File Size: 16,212 bytes
File Type: JS
Initial Samples Received Date: 27 Jan 2015
Arrival Details
This spyware may be hosted on a website and run when a user accesses the said website.
Other Details
This spyware connects to the following possibly malicious URL:
- https://{BLOCKED}o.websiteseguro.com/duplicatas/va/clientes.php
- https://{BLOCKED}o.websiteseguro.com/duplicatas/va/Duplicatas.php