Troj/Bancos-CG is a password stealing Trojan for the Windows platform that targets particular online banking sites.
Running in the background Troj/Bancos-CG monitors a user's internet access to banking websites, in an attempt to log user activity and email the stolen details to a predefined address.
Troj/Bancos-CG is a password stealing Trojan for the Windows platform that targets particular online banking sites.
Once executed, Troj/Bancos-CG copies itself to the Windows folder with the filename jdbgmgrnt.exe, and in order to be able to run automatically when Windows starts up sets the registry entry:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Service Registry NT Save
%WINDOWS%\jdbgmgrnt.exe
Troj/Bancos-CG will also create a text file in the Windows folder named errolog.dat. This file is not malicious and may be deleted.
Running in the background Troj/Bancos-CG monitors a user's internet access to banking websites, in an attempt to log user activity and email the stolen details to a predefined address.