Threat Database Trojans Trojan.Downloader.Banload.XB

Trojan.Downloader.Banload.XB

By CagedTech in Trojans

Threat Scorecard

Threat Level:	80 % (High)
Infected Computers:	15

First Seen:	May 9, 2011
OS(es) Affected:	Windows

Aliases

15 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
AVG	OneStepSearcher.M
AntiVir	TR/Boigy.2
Sophos	Zwangi
Panda	Malicious Packer
AVG	OneStepSearcher.S
Fortinet	Adware/OneStep
Ikarus	BHO.Win32.Zwangi
AntiVir	TR/Crypt.XPACK.Gen
BitDefender	Application.Generic.359752
NOD32	a variant of Win32/Adware.OneStep.Z
McAfee	Adware-OneStep.ae
Panda	Trj/CI.A
AVG	Downloader.Delf.FBH
Ikarus	Trojan-Downloader
AhnLab-V3	Trojan/Win32.Lukicsel

File System Details

Trojan.Downloader.Banload.XB may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	questbrowse145.exe	ff4da3fb36f79be06bc8f807edec358c	8
Name: questbrowse145.exe MD5: ff4da3fb36f79be06bc8f807edec358c Size: 49.15 KB (49152 bytes) Detections: 8 Type: Executable File Path: %ALLUSERSPROFILE%\Application Data\QuestBrwSearch Group: Malware file Last Updated: May 12, 2011
2.	cryptnet32.dll	3fd4a953abcfbf163b90c1750d3e4e20	3
Name: cryptnet32.dll MD5: 3fd4a953abcfbf163b90c1750d3e4e20 Size: 49.15 KB (49152 bytes) Detections: 3 Type: Dynamic link library Path: %WINDIR%\system32 Group: Malware file Last Updated: May 12, 2011
3.	dadlif.exe	d06034372988992f1b5f4910774ef3b8	2
Name: dadlif.exe MD5: d06034372988992f1b5f4910774ef3b8 Size: 571.39 KB (571392 bytes) Detections: 2 Type: Executable File Path: %USERPROFILE%\impostazioni locali\dati applicazioni Group: Malware file Last Updated: May 10, 2011
4.	winfast.exe	483f2d8e8f1ccbccce588cb46e01ae9c	2
Name: winfast.exe MD5: 483f2d8e8f1ccbccce588cb46e01ae9c Size: 536.57 KB (536576 bytes) Detections: 2 Type: Executable File Path: %USERPROFILE%\AppData Group: Malware file Last Updated: May 9, 2011

Trending

PracticalRemote

Mac Malware, Potentially Unwanted Programs

March 8, 2021

PracticalRemote is a PUP (Potentially Unwanted Program) that targets Mac users. It combines the characteristics of both adware and browser hijackers. As such, it can conduct intrusive advertising...

Triovideo.ru

Browser Hijackers

December 27, 2021

Triovideo.ru is a questionable website that may be loaded automatically due to components that were downloaded with either bundled software or freeware have installed to modify Internet settings....

Elibe Ransomware

September 15, 2023

The Elibe Ransomware is characterized by its ability to encrypt files and append ".elibe" to their names, making data inaccessible to victims. The Elibe Ransomware, like many of its counterparts,...

Most Viewed

Is Lookmovie.io Safe? screenshot

Is Lookmovie.io Safe?

August 3, 2021 29,393 5

Lookmovie.io is a video streaming site. The problem is that the content there is being offered for streaming illegally. In addition, the site generates monetary gains via rogue advertising...

How To Fix 'Printer Driver is Unavailable' Error

June 29, 2021 24,877

Printers are notorious for refusing to do their job whenever the user needs it the most. Luckily, if your printer is displaying the Printer Driver is Unavailable' error, then there are a couple of...

Discord Shows Black Screen when Sharing Screen screenshot

Discord Shows Black Screen when Sharing Screen

June 21, 2021 23,910

When it first launched, Discord was a VoIP platform geared toward the gaming community. However, in the following years, it expanded its scope, added numerous new features, and became one of the...

Loading...