MSIL/PSW.Steam [Threat Name] go to Threat

MSIL/PSW.Steam.PQ [Threat Variant Name]

Category trojan
Size 1509376 B
Detection created Dec 28, 2015
Detection database version 12786
Aliases PWS:MSIL/Mintluks.A (Microsoft)
  Trojan.PWS.Steam.5207 (Dr.Web)
Short description

MSIL/PSW.Steam.PQ is a trojan that steals passwords and other sensitive information. The trojan attempts to send gathered information to a remote machine.

Installation

The trojan does not create any copies of itself.


The trojan is probably a part of other malware.


The trojan can modify the following file:

  • %system32%\­drivers\­etc\­hosts

This way the trojan blocks access to specific websites.

Information stealing

MSIL/PSW.Steam.PQ is a trojan that steals sensitive information.


The trojan collects the following information:

  • login user names for certain applications/services
  • login passwords for certain applications/services

The following programs are affected:

  • Amigo browser
  • ChromePlus
  • ChromiumPortable
  • Comodo Dragon
  • Google Chrome
  • Mozilla Firefox
  • Nichrome browser
  • Opera
  • Steam
  • Xpom browser
  • Yandex Browser

The trojan attempts to send gathered information to a remote machine.


The trojan contains a list of (5) URLs. The HTTP protocol is used in the communication.

Please enable Javascript to ensure correct displaying of this content and refresh this page.