Home > Threat descriptions >



Category: Malware

Type: Trojan-Downloader

Aliases: Banload.AQP


This malware downloads and executes a file from certain websites.


Automatic action

Based on the settings of your F-Secure security product, it will either automatically delete, quarantine or rename the detected program or file, or ask you for a desired action.

Knowledge Base

Find the latest advice in our Community Knowledge Base.

About the product

See the manual for your F-Secure product on the Help Center.

Contact Support

Chat with or call an expert for help.

Submit a sample

Submit a file or URL for further analysis.

Technical Details

This malware uses an Icon of an Image file.Upon execution, this malware connects, downloads, and executes a file from the follwing websites:

  • https://bedtrader.com/tmp/fotos/[REMOVED]/verao1.scr

Detected as Trojan-Spy.Win32.Banker.axc.

  • https://snwn.lss.gov.cn/img/fotos/[REMOVED]/verao1.scr

Detected as Trojan-Spy.Win32.Banker.av.