PE_PARITE.A

PE_PARITE.A

By GoldSparrow in Uncategorized

Threat Scorecard

Threat Level: 80 % (High)
Infected Computers: 5
First Seen: May 9, 2013
Last Seen: August 31, 2022
OS(es) Affected: Windows

PE_PARITE.A is a virus that circulates by using a homemade Internet browser and attacks users of 'Banco do Brasil'. PE_PARITE.A steals login information from victims. The specific Internet browser is given that could access the website of the 'Banco do Brasil' without using the necessary security plugin. PC users that click the download link download a zip file. The compressed file encompasses two executable files: one is the Internet browser itself, which is called 'Navegador BB', and another one is the file called 'Plugin_Navegador_2.1.3.exe'. These files are found as PE_PARITE.A. The third file is a text file which incorporates instructions to execute 'Plugin_Navegador_2.1.3.exe' first, and then execute the Internet browser. The 'plugin', in actuality, steals the victim's bank information. Meanwhile, the Internet browser dupes the bank website into not needing the common security plugin by simulating that it is a mobile browser. The homemade Internet browser doesn't even have an address bar, or any other place to set a web address. It only has a single button that sends the PC user directly to the website of the bank.

File System Details

PE_PARITE.A may create the following file(s):
# File Name Detections
1. Plugin_Navegador_2.1.3.exe
2. Navegador BB.exe
3. %User Temp%\[RANDOM FILE NAME].tmp

Registry Details

PE_PARITE.A may create the following registry entry or registry entries:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer PINF =

Trending

Most Viewed

Loading...