Criminals are advertising a new banking Trojan on Russian forums, one going for a hefty price and being marketed as a method of evading detection and analysis.
To date, however, security researchers have yet to obtain a sample of Kronos, which is available on a few forums for pre-order at a cost of $7,000.
Kronos does what most banking Trojans do: steals credentials and uses Web injects made for every major browser to modify legitimate banking websites. Once a user logs in, the web injects look for additional information from the victim, details that are generally not required upon log-in such as ATM PIN numbers or personal information to help with security questions.
Source and Full Story Here: http://threatpost.com/new-kronos-banking-malware-advertised-on-russian-forums/107210