MajikPOS Combines PoS Malware and RATs to Pull Off its Malicious Tricks
Show in Graph
Image Description
Common Information
Type Value
UUID d904a3d2-e389-4050-b803-d1c7559b32fb
Fingerprint bb5e564ed6168694681546fca9920eb8b513cd1962a3751ad692a96be84885c7
Analysis status DONE
Considered CTI value 2
Text language
Published March 14, 2017, 8:17 p.m.
Added to db April 14, 2024, 10:03 a.m.
Last updated Aug. 30, 2024, 10:36 p.m.
Headline MajikPOS Combines PoS Malware and RATs to Pull Off its Malicious Tricks
Title MajikPOS Combines PoS Malware and RATs to Pull Off its Malicious Tricks
Detected Hints/Tags/Attributes 69/1/26
Source URLs
Redirection Url
Details Source https://documents.trendmicro.com/assets/majikpos-combines-pos-malware-and-rats-to-pull-off-its-malicious-tricks.pdf
URL Provider
Details Provider Source level domain
Details trendmicro.com documents.trendmicro.com
Attributes
Details Type #Events CTI Value
Details Domain 1 
swipe.wtf
Details Domain 1 
swipeit.pro
Details Domain 1 
mcdumps.pro
Details Domain 1 
mcdumps.top
Details Domain 1 
umbpan.pw
Details Domain 1 
umbpan.xyz
Details Domain 1 
magicdumps.biz
Details Domain 1 
magicdumps.one
Details Domain 1 
magicdumps.pw
Details Domain 1 
magicdumps.trade
Details Domain 1 
magicdumps.pro
Details Domain 1 
magicdumps.review
Details Domain 1 
magicdumps.space
Details Domain 1 
magicdumps.xyz
Details Domain 1 
magicdumps.top
Details Domain 604 
www.trendmicro.com
Details File 2 
tspy_pocardl.ai
Details File 165 
csrss.exe
Details File 137 
conhost.exe
Details File 1 
%windir%\conhost.exe
Details sha256 1 
427f1bf2b91cad1e9a4b7e095d6c83763f1bd50d6b8d515d3dbee9f96ef47097
Details sha256 1 
283d1780fbd96325b19b7f273343ba8f8a034bd59f92dbf9b35e3a000840a3b4
Details sha256 1 
14e5efcf0ba8773bcaf1c1b0517a614af68caa67902ee9f26a2a07a2ade58efb
Details sha256 1 
25e4d8354c882eaea94b52039a96cc6d969a2dec8486557351cfa1d05c3b8984
Details sha256 1 
4bbc0afc598c197f137d0617de4bd1ab8c6eef751accb83a5bb6ea02e6c047c0
Details IPv4 1 
193.169.252.102