blackpos target breach malware
OpenIOC1.0
by @iocbucket
sha1:
b91b6ee9ba2b7b85cb7b2c04fc6a4da16ed77326
short description:
blackpos target breach malware
long description:
this ioc detects the malware family used during the target point of sale compromise. the blackpos malware is tied to a malware family symantec identifies as infostealer.reedum. reedum is a pos ram scraper malware a type that scans memory within processes and ?scrapes? out anything useful. for pos malware, this is usually track 2 credit card information that can be used to create a forged copy using special equipment.