Neutrino modification for POS-terminals


Userlevel 7
Badge +54
By Sergey Yunakovsky on June 27, 2017
 
From time to time authors of effective and long-lived Trojans and viruses create new modifications and forks of them, like any other software authors. One of the brightest examples amongst them is Zeus (Trojan-Spy.Win32.Zbot, based on classification of “Kaspersky Lab”), which continues to spawn new modifications of itself each year. In a strange way this malware becomes similar to his prototype from Greek mythology. We can also attribute such malware familes as Mirai, NJRat, Andromeda and so on to this “prolific” group. Malware named “Neutrino” takes an important place in this row of well-known trojans, providing various types of infection, spreading and a useful payload.
 
In this article we analyze a very special species – a variant which could collect credit card information from POS.
 
Products of “Kaspersky Lab” detect it as Trojan-Banker.Win32.NeutrinoPOS
 
MD5 of descripted file: 0CF70BCCFFD1D2B2C9D000DE496D34A1
 
Full Article.

0 replies

Be the first to reply!

Reply