Troj/Banker-BN is a password stealing Trojan aimed at customers of a Brazilian bank.
When run the Trojan will create the following registry entry so as to auto-run:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
RunWin
<path to Trojan>
Troj/Banker-BN will monitor a user's internet access. When certain internet banking sites are visited, the Trojan will display a fake login screen in order to trick the user into inputting their details. The Trojan will monitor for URLS containing the following string:
BancoBrasil\officeIE\index.html
Troj/Banker-BN will then send the stolen details to an anonymous email address.