Threat Description

Banload.AQP

Details

Aliases:Banload.AQP, Banload.AQP
Category:Malware
Type:Trojan-Downloader
Platform:W32

Summary



This malware downloads and executes a file from certain websites.



Removal


Automatic action

Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.

More

You may wish to refer to the Support Community for further assistance. You also may also refer to General Removal Instructions for a general guide on alternative disinfection actions.



Technical Details



This malware uses an Icon of an Image file.Upon execution, this malware connects, downloads, and executes a file from the follwing websites:

  • http://bedtrader.com/tmp/fotos/[REMOVED]/verao1.scr

Detected as Trojan-Spy.Win32.Banker.axc.

  • http://snwn.lss.gov.cn/img/fotos/[REMOVED]/verao1.scr

Detected as Trojan-Spy.Win32.Banker.av.



Detection



Detection Type: PC
Database: 2006-05-24_03




SUBMIT A SAMPLE

Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Now

Give And Get Advice

Give advice. Get advice. Share the knowledge on our free discussion forum.

Learn More