ThreatExpert's Statistics for Trojan-Spy.Banker [Ikarus]:

Trojan-Spy.Banker [Ikarus] is also known as:

Threat Alias	Number of Incidents
Mal/Generic-A [Sophos]	862
Win-Trojan/Agent.3584.DB [AhnLab]	690
Trojan Horse [Symantec]	681
Generic.dx!ui [McAfee]	667
Trojan.Win32.Agent.cuxo [Kaspersky Lab]	576
Mal/Banker-E [Sophos]	448
Suspicious.MH690 [Symantec]	246
Trojan.Win32.Agent [Ikarus]	162
Mal_Banker [Trend Micro]	106
PWS-Banker.gen.dh.dldr [McAfee]	78
Infostealer.Bancos [Symantec]	65
Mal/Banker-E, Mal/Banker-B [Sophos]	63
not-a-virus:PSWTool.Win32.MailPassView.bg [Kaspersky Lab]	43
PWS-Banker [McAfee]	35
Mal/Behav-103, Mal/Behav-043 [Sophos]	33
Downloader [Symantec]	23
Dropper/PSWTool.460987.B [AhnLab]	18
Trojan-Downloader.Win32.Banload.ageb [Kaspersky Lab]	16
Trojan-Banker.Win32.Banker.akpb [Kaspersky Lab]	15
New Malware.bx [McAfee]	14
Trojan-Downloader.Win32.Banload.abss [Kaspersky Lab]	13
Generic.dx!bus [McAfee]	12
Trojan-Downloader.Win32.Agent.ckui [Kaspersky Lab]	12
Virus.Win32.Induc.a [Kaspersky Lab]	12
Generic.dx [McAfee]	11
Trojan.Win32.Agent.cieh [Kaspersky Lab]	11
Trojan.Win32.Delf.ooz [Kaspersky Lab]	11
Trojan-Banker.Win32.Banker.etk [Kaspersky Lab]	11
Trojan-Downloader.Win32.Delf.shs [Kaspersky Lab]	11
Mal/Behav-103 [Sophos]	10
Trojan-Banker.Win32.Banker.affj [Kaspersky Lab]	10
Trojan-Downloader.Win32.Agent.cmzv [Kaspersky Lab]	10
Trojan-Downloader.Win32.Delf.teu [Kaspersky Lab]	10
Generic Downloader.x [McAfee]	9
Troj/Bancos-BFZ [Sophos]	9
Trojan-Banker.Win32.Banker.akbm [Kaspersky Lab]	9
Trojan-Downloader.Win32.Delf.uai [Kaspersky Lab]	8
Win-Trojan/Banker.352556 [AhnLab]	8
Mal/Inet-Fam [Sophos]	7
Trojan:Win32/Malat [Microsoft]	7
Trojan-Banker.Win32.Banbra.geq [Kaspersky Lab]	7
Trojan-Downloader.Win32.Homa.el [Kaspersky Lab]	7
Virus.Win32.Parite.b [Kaspersky Lab]	7
Win-Trojan/Xema.variant [AhnLab]	7
Backdoor.Win32.Agent.afok [Kaspersky Lab]	6
Infostealer [Symantec]	6
Mal/Bancos-C [Sophos]	6
Trojan-Downloader.Banload!sd6 [PC Tools]	6
Trojan-Downloader.Win32.Banload.zhg [Kaspersky Lab]	6
Trojan-Spy.Win32.Banker.pxr [Kaspersky Lab]	6
Win-Trojan/Banker.352556.B [AhnLab]	6
Trojan.Win32.Agent.cqdd [Kaspersky Lab]	5
Trojan-Banker.Win32.Banbra.gtv [Kaspersky Lab]	5
Trojan-Banker.Win32.Banker.addh [Kaspersky Lab]	5
Trojan-Banker.Win32.Banker.agrf [Kaspersky Lab]	5
Trojan-Banker.Win32.Banker.akzq [Kaspersky Lab]	5
Trojan-Banker.Win32.Banker.amkc [Kaspersky Lab]	5
Trojan-Downloader.Win32.Banload.sm [Kaspersky Lab]	5
Trojan-PSW.Win32.Delf.dud [Kaspersky Lab]	5
Generic.dx!lj [McAfee]	4
Mal/Banker-Fam [Sophos]	4
PWS-Banker!un [McAfee]	4
Trojan.Win32.Delf.nhm [Kaspersky Lab]	4
Trojan.Win32.Scar.aiyy [Kaspersky Lab]	4
Trojan:Win32/Comneop [Microsoft]	4
Trojan-Banker.Win32.Banbra.lri [Kaspersky Lab]	4
Trojan-Banker.Win32.Banker.abev [Kaspersky Lab]	4
Trojan-Banker.Win32.Banker.afkn [Kaspersky Lab]	4
Trojan-Banker.Win32.Banker.ahtz [Kaspersky Lab]	4
Trojan-Banker.Win32.Banker.ahwa [Kaspersky Lab]	4
Trojan-Banker.Win32.Banker.airk [Kaspersky Lab]	4
Trojan-Banker.Win32.Banker.alfn [Kaspersky Lab]	4
Trojan-Banker.Win32.Banker.aohf [Kaspersky Lab]	4
Trojan-Banker.Win32.Banker2.aq [Kaspersky Lab]	4
Trojan-Banker.Win32.Delf.n [Kaspersky Lab]	4
Trojan-Downloader.Win32.Agent.cijt [Kaspersky Lab]	4
Trojan-Downloader.Win32.Banload.acus [Kaspersky Lab]	4
Trojan-Downloader.Win32.Banload.aea [Kaspersky Lab]	4
Trojan-Downloader.Win32.Banload.agbi [Kaspersky Lab]	4
Trojan-Downloader.Win32.Banload.agxt [Kaspersky Lab]	4
Trojan-Downloader.Win32.Banload.ajeg [Kaspersky Lab]	4
Trojan-Downloader.Win32.Banload.oaa [Kaspersky Lab]	4
Trojan-Downloader.Win32.Delf.qeo [Kaspersky Lab]	4
Trojan-Downloader.Win32.Delf.scd [Kaspersky Lab]	4
Trojan-Downloader.Win32.Delf.upt [Kaspersky Lab]	4
Trojan-Downloader.Win32.Delf.wiz [Kaspersky Lab]	4
Trojan-Downloader.Win32.Homa.g [Kaspersky Lab]	4
Trojan-Downloader.Win32.Homa.ge [Kaspersky Lab]	4
Trojan-Downloader.Win32.Homa.mu [Kaspersky Lab]	4
Trojan-Downloader.Win32.Homa.yw [Kaspersky Lab]	4
TrojanDownloader:Win32/Banload [Microsoft]	4
Trojan-PSW.Win32.Agent.nqd [Kaspersky Lab]	4
Trojan-PSW.Win32.Delf.cwj [Kaspersky Lab]	4
Trojan-Spy.Bancos!sd6 [PC Tools]	4
TrojanSpy:Win32/Mafod!rts [Microsoft]	4
Win-Trojan/Downloader.352400 [AhnLab]	4
Backdoor.Win32.Agent.afav [Kaspersky Lab]	3
Bloodhound.Bancos.1 [Symantec]	3
Generic PWS.y!xi [McAfee]	3
Mal/Banspy-F [Sophos]	3

Trojan-Spy.Banker [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	Brazil	1,304
	Israel	118
	China	8
	Germany	7
	Poland	7
	Croatia	6
	Russian Federation	3
	Portugal	2
	Republic of Korea	2
	Spain	1
	United Kingdom	1

Trojan-Spy.Banker [Ikarus] is known to be created as:

%CommonPrograms%\startup\avg.exe

%CommonPrograms%\startup\win.exe

%ProgramFiles%\common files\shost.exe

%System%\1252352892\f4.dll

%System%\1254515140\f4.dll

%System%\1259799103\f4.dll

%System%\avg.exe

%System%\contador.exe

%System%\crepusculox.exe

%System%\drivers\gbpkm2.sys

%System%\ftpext.exe

%System%\ftpplu.exe

%System%\ftpplus.exe

%System%\future.exe

%System%\gbpsv.exe

%System%\help10.exe

%System%\java_up.exe

%System%\mimsn.exe

%System%\msnmsgr.exe

%System%\ocxlist\bbseg.exe

%System%\plug.sys

%System%\pros.exe

%System%\sjavaplug.exe

%System%\spain.exe

%System%\spoolsvs.exe

%System%\svchosts.exe

%System%\trabalho3.exe

%System%\trabalho4.exe

%System%\winupdatedatp.exe

%Temp%\gbpkm2.sys

%Temp%\java.exe

%Temp%\telegrama445br.com

%Windir%\noteepad.exe

%Windir%\segurancabradesco.exe

%Windir%\sndxpsp.exe

%Windir%\system\msn.exe

%Windir%\system\win.exe

%Windir%\worddpad.exe

c:\arquivos windows\reor.exe

c:\arquivos windows\sslib.exe

c:\bet3233.exe

c:\betinhax.exe

c:\coreldrawns.exe

c:\extra.exe

c:\monkeyxplayer.exe

Notes:

%CommonPrograms% is a variable that refers to the file system directory that contains the directories for the common program groups that appear on the Start menu for all users. A typical path is C:\Documents and Settings\All Users\Start Menu\Programs (Windows NT/2000/XP).
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.