A forum for reverse engineering, OS internals and malware analysis 

Search found 7 matches

 Go to advanced search

Re: Point-of-Sale malwares / RAM scrapers

 by Silence_is_best ¦  Mon Mar 20, 2017 1:35 am ¦  Forum: Malware ¦  Topic: Point-of-Sale malwares / RAM scrapers ¦  Replies: 244 ¦  Views: 866343

MajikPOS: Via: http://blog.trendmicro.com/trendlabs-security-intelligence/majikpos-combines-pos-malware-and-rats/ VT links: https://www.virustotal.com/en/file/4bbc0afc598c197f137d0617de4bd1ab8c6eef751accb83a5bb6ea02e6c047c0/analysis/ https://www.virustotal.com/en/file/25e4d8354c882eaea94b52039a96cc6...

Re: Point-of-Sale malwares / RAM scrapers

 by Silence_is_best ¦  Wed Jun 29, 2016 4:38 pm ¦  Forum: Malware ¦  Topic: Point-of-Sale malwares / RAM scrapers ¦  Replies: 244 ¦  Views: 866343

Re: Point-of-Sale malwares / RAM scrapers

 by Silence_is_best ¦  Fri Jun 03, 2016 10:17 pm ¦  Forum: Malware ¦  Topic: Point-of-Sale malwares / RAM scrapers ¦  Replies: 244 ¦  Views: 866343

Re: Point-of-Sale malwares / RAM scrapers

 by Silence_is_best ¦  Thu Apr 21, 2016 7:23 pm ¦  Forum: Malware ¦  Topic: Point-of-Sale malwares / RAM scrapers ¦  Replies: 244 ¦  Views: 866343

Thanks so much!

Re: Point-of-Sale malwares / RAM scrapers

 by Silence_is_best ¦  Tue Apr 19, 2016 10:27 pm ¦  Forum: Malware ¦  Topic: Point-of-Sale malwares / RAM scrapers ¦  Replies: 244 ¦  Views: 866343

Would love to see TinyPOS and MULTIGRAIN here...interested in the custom base32 encoding as well:

https://www.fireeye.com/blog/threat-res ... ointo.html

Thank you

Throwback source

 by Silence_is_best ¦  Sat Nov 08, 2014 1:32 pm ¦  Forum: Malware ¦  Topic: Throwback source ¦  Replies: 0 ¦  Views: 2970

Interesting:

https://github.com/silentbreaksec/Throwback

Saw this in the wild beaconing back as a fake Windows Defender executable...they even left the keys the same.

Re: Point-of-Sale malwares / RAM scrapers

 by Silence_is_best ¦  Tue Sep 09, 2014 11:25 am ¦  Forum: Malware ¦  Topic: Point-of-Sale malwares / RAM scrapers ¦  Replies: 244 ¦  Views: 866343

A sample of this would be neat to see...I'd like to see if the data exfiltration and C&C traffic are the same as the older BackOFF's.