F-Secure
Tools
Trojan-Spy:W32/Zbot.gen!G
Summary
A trojan that secretly installs spy programs, such as keyloggers.
Additional Details
Trojan-Spy:W32/Zbot.gen!G is a Generic Detection for variants of the Trojan:W32/Zbot malware family.
Variants in the Zbot family typically perform data-stealing routines, particularly details relating to online banking accounts. The data harvesting activity may also involve fake webpages designed to mimic an authentic online banking portal, in order to steal login details entered by an unsuspecting user.
Later variants may also include backdoor and proxy capabilities, increasing the potential security threat of a Zbot infection.
About Generic Detections
Unlike signature or single-file detections, a Generic Detection does not identify a unique or individual malicious program. Instead, a Generic Detection looks for broadly applicable code or behavior characteristics that indicate a file as potentially malicious, so that a single Generic Detection can efficiently identify dozens, or even hundreds of malware.
Variants in the Zbot family typically perform data-stealing routines, particularly details relating to online banking accounts. The data harvesting activity may also involve fake webpages designed to mimic an authentic online banking portal, in order to steal login details entered by an unsuspecting user.
Later variants may also include backdoor and proxy capabilities, increasing the potential security threat of a Zbot infection.
About Generic Detections
Unlike signature or single-file detections, a Generic Detection does not identify a unique or individual malicious program. Instead, a Generic Detection looks for broadly applicable code or behavior characteristics that indicate a file as potentially malicious, so that a single Generic Detection can efficiently identify dozens, or even hundreds of malware.