Overall risk rating:

Reported detections:

System  impact:

Information exposure:

Description:

This spyware may be downloaded from remote sites by other malware. It may be dropped by other malware.

It drops copies of itself. It adds key(s) as part of its installation routine.

It creates registry entries to enable its automatic execution at every system startup.

It creates registry key(s)/entry(ies).

It injects itself into processes as part of its memory residency routine.

It attempts to retrieve information from a list of banks or financial institutions.

It sends the gathered information via HTTP POST to a remote URL.

It downloads an updated copy of itself from certain Web sites.

It deletes itself after execution.

For additional information about this threat, see:
Solution
Technical Details