PrntRhd
09-17-2004, 10:32 AM
This trojan grabs password if user logs onto National Bank of Australia site and sends it to remote site. See this article:
Sydney Morning Herald (http://www.smh.com.au/articles/2004/09/17/1095320943628.html?oneclick=true)
Darn registration on the site.
A trojan that attempts to steal online banking information from customers of the National Australia Bank has been reported by the anti-virus firm, Sophos. Sophos's tech lead in the Asia Pacific said it could be spread by email or directly sent to PCs which have been already commandeered by malicious atttackers. As soon as it sees the user is logging onto the National Australia Bank's website it grabs their account id and password and sends it to remote hackers. Sophos said when first run Troj/IBank-A copied itself to the Windows folder as audld.exe and to the Windows system folder as wmbem.exe.
Sydney Morning Herald (http://www.smh.com.au/articles/2004/09/17/1095320943628.html?oneclick=true)
Darn registration on the site.
A trojan that attempts to steal online banking information from customers of the National Australia Bank has been reported by the anti-virus firm, Sophos. Sophos's tech lead in the Asia Pacific said it could be spread by email or directly sent to PCs which have been already commandeered by malicious atttackers. As soon as it sees the user is logging onto the National Australia Bank's website it grabs their account id and password and sends it to remote hackers. Sophos said when first run Troj/IBank-A copied itself to the Windows folder as audld.exe and to the Windows system folder as wmbem.exe.