ioc[.]one - OSINT Cyber Threat Intelligence Database

New POS Malware PinkKite Takes Flight

Tags

country:	Canada Netherlands South Korea
attack-pattern:	Data Credentials - T1589.001 Malware - T1587.001 Malware - T1588.001 Remote Desktop Protocol - T1021.001 Remote Desktop Protocol - T1076

Show in Graph

Common Information

Type	Value
UUID	ea8fc664-4552-44b1-9d48-a1d54b769b6e
Fingerprint	a5bcb30dea65a3e3
Analysis status	DONE
Considered CTI value	0
Text language
Published	March 14, 2018, 3:11 p.m.
Added to db	Sept. 26, 2022, 9:30 a.m.
Last updated	Nov. 17, 2024, 6:55 p.m.
Headline	New POS Malware PinkKite Takes Flight
Title	New POS Malware PinkKite Takes Flight
Detected Hints/Tags/Attributes	36/2/3

Source URLs

	Redirection	Url
Details	Source	https://threatpost.com/new-pos-malware-pinkkite-takes-flight/130428/

URL Provider

Details	Provider	Source level domain
Details	threatpost.com	threatpost.com

Attributes

Details	Type	#Events	CTI	Value
Details	File	1122		svchost.exe
Details	File	63		ctfmon.exe
Details	File	6		ag.exe