Advice Request Chrome Extension (Blockless VPN) detected (blocked) by Avast

Please provide comments and solutions that are helpful to the author of this topic.

Status
Not open for further replies.

Ink

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 8, 2011
22,361
Before sharing any software, I may test it out of curiosity. Seeing as this got flagged by my security software, I won't post it.

Can anyone verify this as JS:Banker-AAV [Trojan] data-stealing or false positive?

Offending Chrome extension:
hxxps://chrome.google (dot) com/webstore/detail/blockless-proxy-vpn-freed/abkfaffjmlmannmlnlfheoohcnciagdl

upload_2017-6-13_20-26-7.png


upload_2017-6-13_20-30-11.png


As a precaution, uninstalled extension. Therefore unable to inspect suspect file (background.js).
 

mekelek

Level 28
Verified
Well-known
Feb 24, 2017
1,661
that's a pretty solid detection, Banker Trojan, the name speaks for itself. has been coming up today during malware testing too.
 

Parsh

Level 25
Verified
Honorary Member
Top Poster
Malware Hunter
Well-known
Dec 27, 2016
1,480
@Spawn got this only article that write about JS: Banker-AAV.
JS: Banker-AAV is known as a awful Trojan malware which will take charge of the objective computer right after it can be set up in the toxified method. It can be circulated for some time and do great harm to throughout the world computer systems running with Windows 7, Vista, XP and Windows 8 and so on. It is a probably unwanted software that tons itself as being a backdrop program, taking up a great deal of your Central processing unit usage And other personal computer assets. Particularly, you can expect to find it hard to execute measures about the target computer. Without a doubt, the Trojan can be done to corrupt your personal computer miserably and make it unusual. Annoying program trapped And frequent computer freezes could arise when you surf the net, down load courses & perform online games And so forth. As being a destructive pc disease, the Trojan can be bundled with adware, worms, malware and other additional threats. Upon initializing, the JS: Banker-AAV infection replicates alone within your body And results in new hazardous documents with arbitrary labels. It will bring you additional computer damage like method accident And blue display fault, if you do not take activities to get it off your computer instantly.
More about the trojan including symptoms is explained in the link. Though a lot of it is generic,the page does mention some specific malicious activities of this trojan.
Should not be an FP.
 
  • Like
Reactions: BearHug and mekelek
Status
Not open for further replies.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top