Magecart Strikes Again: Newegg in the Crosshairs | Volexity
Tags
| attack-pattern: | Data Domains - T1583.001 Domains - T1584.001 Financial Theft - T1657 Hardware - T1592.001 Javascript - T1059.007 Whois - T1596.002 |
Common Information
| Type | Value |
|---|---|
| UUID | c7c47668-927e-448a-a941-b87f68f7e8fd |
| Fingerprint | 1d040a1159b1b68b |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Sept. 19, 2018, midnight |
| Added to db | Feb. 17, 2023, 10:26 p.m. |
| Last updated | Oct. 1, 2024, 2:28 p.m. |
| Headline | UNKNOWN |
| Title | Magecart Strikes Again: Newegg in the Crosshairs | Volexity |
| Detected Hints/Tags/Attributes | 33/1/9 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.volexity.com/blog/2018/09/19/magecart-strikes-again-newegg/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 8 | newegg.com |
|
| Details | Domain | 2 | secure.newegg.com |
|
| Details | Domain | 2 | neweggstats.com |
|
| Details | Domain | 1 | btncreditcard.paymentbtn.creditcard |
|
| Details | Domain | 1 | paymentbtn.creditcard |
|
| Details | File | 2 | checkoutstep2.aspx |
|
| Details | IPv4 | 2 | 217.23.4.11 |
|
| Details | Url | 2 | https://secure.newegg.com/globalshopping/checkoutstep2.aspx |
|
| Details | Url | 1 | https://neweggstats.com/globaldata |