Threat Database Trojans Trojan.Spy.Banker.Gen


By GoldSparrow in Trojans

Threat Scorecard

Threat Level: 90 % (High)
Infected Computers: 11
First Seen: July 24, 2009
Last Seen: January 9, 2019
OS(es) Affected: Windows

The Trojan.Spy.Banker.Gen Trojan was first detected in early 2009. This dangerous malware threat is used to steal online banking data and has been responsible for the loss of millions of dollars since its discovery. It is designed to affect computer systems with the Windows operating system and, even though Microsoft has released various security updates to help protect its customers from Trojan.Spy.Banker.Gen, the criminals behind Trojan.Spy.Banker.Gen have also continually updated their malware infection since its first release. The term Trojan.Spy.Banker.Gen is a generic term that is used to refer to most members of the Win32/Bancos family of Trojans, a family of dangerous malware designed to steal banking information, such as the login names and passwords for online accounts among the main banks of the world. Although Trojan.Spy.Banker.Gen can be designed to target customers of any bank, most variants of Trojan.Spy.Banker.Gen and its family are designed to steal information related to the main Brazilian and South American banks. ESG security researchers recommend being extremely careful if you are an online customer of a Brazilian or South American bank, since Trojan.Spy.Banker.Gen will often display no symptoms except for a warning from your anti-virus software.


How Trojan.Spy.Banker.Gen May Enter Your Computer System

Like most Trojans, Trojan.Spy.Banker.Gen does not have the capacity to spread on its own. Criminals rely on deception in order to trick their victims into downloading and installing Trojan.Spy.Banker.Gen onto their computer. Trojan.Spy.Banker.Gen is typically spread through spam email, usually through an embedded link or an attached file. This is why, as a basic rule of online safety, ESG security researchers strongly advise against opening links or attached files in any unsolicited emails, even if they appear to come from a trusted source. The attachment associated with Trojan.Spy.Banker.Gen will often use a friendly icon, often the Internet Explorer icon or an envelope icon in order to fool its victim into believing that it is a real notification. Once installed, Trojan.Spy.Banker.Gen makes harmful changes to the Windows Registry and system settings that allow Trojan.Spy.Banker.Gen to perform any of the following actions:

  • Trojan.Spy.Banker.Gen can monitor the infected computer's Internet and network connection.
  • Trojan.Spy.Banker.Gen can send and receive files online and over the network.
  • Trojan.Spy.Banker.Gen can steal system information and data on your hard drives.


6 security vendors flagged this file as malicious.

Anti-Virus Software Detection
Panda Suspicious file
McAfee-GW-Edition Trojan.Spy.Banker.Gen
McAfee Suspect-0B!FFF100033458
BitDefender Gen:Trojan.Heur.nmSfranuwcfO
Authentium W32/Threat-SysVenFak-based!Maximus
AntiVir TR/Spy.Banker.Gen

SpyHunter Detects & Remove Trojan.Spy.Banker.Gen

File System Details

Trojan.Spy.Banker.Gen may create the following file(s):
# File Name MD5 Detections
1. renewnetwork.dll f65b98b343f7f22414a5fde82cb5103e 2
2. btask.dll dec4be3ac4af5dac3976aeda45f765e3 0


Most Viewed