ThaiCERT    ETDA    MDES
Report
Search
Home > List all groups > List all tools > List all groups using tool GetMyPass

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Tool: GetMyPass

NamesGetMyPass
CategoryMalware
TypePOS malware, Credential stealer
Description(securitykitten) To run this malware successfully the attacker would need several pieces of information:

• Credentials
• Name of the POS executable / service
• A method for moving the data out of the network

This malware seems to be in its infancy. There are debug strings still existent in the malware indicate to me that the author is still testing the tool or is still actively developing it.
Information<https://securitykitten.github.io/2014/11/26/getmypass-point-of-sale-malware.html>
<https://securitykitten.github.io/2015/01/08/getmypass-point-of-sale-malware-update.html>
<https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/the-evolution-of-point-of-sale-pos-malware>
Malpedia<https://malpedia.caad.fkie.fraunhofer.de/details/win.getmypass>

Last change to this tool card: 22 May 2020

Download this tool card in JSON format

All groups using tool GetMyPass

ChangedNameCountryObserved

Unknown groups

X_[ Interesting malware not linked to an actor yet ]_ 

1 group listed (0 APT, 0 other, 1 unknown)

Thailand Computer Emergency Response Team (ThaiCERT)
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1234
E-mail report@thaicert.or.th
PGP Download PGP key