ModPOS

Description

(FireEye) ModPOS is highly modular and can be configured to target specific systems with components such as uploader/downloader, keylogger, POS RAM scraper and custom plugins for credential theft and other specialized functions like network reconnaissance. We believe other capabilities could also be leveraged. The modules are packed kernel drivers that use multiple methods of obfuscation and encryption to evade even the most sophisticated security controls.

Names

Name
ModPOS
straxbot

Type

Reconnaissance
POS malware
Backdoor
Keylogger
Credential stealer

Information

https://www.fireeye.com/blog/threat-research/2015/11/modpos.html

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.modpos

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:modpos

Other Information

Uuid

fdb9cd93-6826-440e-b2ef-04f8618c92b4

Last Card Change

2022-12-28

Threat Intelligence Garden

Explorer

ModPOS

ModPOS

Description

Names

Category

Type

Information

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks