CenterPOS

Description

(FireEye) CenterPOS malware was initially discovered in September 2015 in a directory filled with other POS malware, including NewPoSThings, two Alina POS variants known as “Spark” and “Joker,” and BlackPOS. This CenterPOS sample (171c4c62ab2001c2f2394c3ec021dfa3) contains an internal version of “1.7” and is a memory scraper that iterates through running processes in order to extract payment card information. The payment card information is transferred to a command and control (CnC) server via HTTP POST:

Names

Name
CenterPOS
Cerebrus

Type

POS malware
Backdoor
Credential stealer

Information

https://www.fireeye.com/blog/threat-research/2016/01/centerpos_an_evolvi.html

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.centerpos

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:CenterPOS

Other Information

Uuid

af2af621-086d-4b01-af40-c4e0a406ccba

Last Card Change

2020-05-24

Threat Intelligence Garden

Explorer

CenterPOS

CenterPOS

Description

Names

Category

Type

Information

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks