ThaiCERT    ETDA    MDES
Report
Search
Home > List all groups > List all tools > List all groups using tool PoSlurp

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Tool: PoSlurp

NamesPoSlurp
PUNCHTRACK
PSVC
CategoryMalware
TypePOS malware, Backdoor, Info stealer
Description(Trend Micro) PoSlurp scrapes credit card data processed by the PoS devices, including stored and encrypted card data prior to malware infection. Once the information is extracted from the infected system, the attackers can check and verify the validity of the data offline. PoSlurp also allows the attackers to inject other commands, access files, copy log files back to the server, and delete log files, among others.
Information<https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/fin8-reemerges-with-new-pos-malware-badhatch>
MITRE ATT&CK<https://attack.mitre.org/software/S0197/>
Malpedia<https://malpedia.caad.fkie.fraunhofer.de/details/win.poslurp>
AlienVault OTX<https://otx.alienvault.com/browse/pulses?q=tag:PoSlurp>

Last change to this tool card: 22 April 2020

Download this tool card in JSON format

Previous: POSHSPY
Next: POTROAST

All groups using tool PoSlurp

ChangedNameCountryObserved

APT groups

 FIN8[Unknown]2016-Jul 2019 

1 group listed (1 APT, 0 other, 0 unknown)

Thailand Computer Emergency Response Team (ThaiCERT)
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1234
E-mail report@thaicert.or.th
PGP Download PGP key