Dexter (Point of sale ) Banking Malware Source Code

CyberGod

Administrator
Staff member
Admin
Moderator
Joined
Dec 23, 2021
Messages
779
Hellcoins
♆25,973
Profile Music
Telegram
Dexter is a computer virus or point of sale malware that infects computers running Microsoft Windows and was discovered by IT security firm Seculert, in December 2012. It infects PoS systems worldwide and steals sensitive information such as Credit Card and Debit Card information.

Function​

When Dexter infects a machine it injects itself into iexplore.exe, the executable file that runs Internet Explorer. It also changes Windows registry entries to allow the malware to run on the startup of the machine.The malware parses memory dumps by using a Windows function called ReadProcessMemory. Dexter uploads the contents of the memory it parses from PoS machines to a server located in The Republic of Seychelles. The information Dexter can collect includes credit and debit card information, user names and host names, operating system data, a list of running processes, and encryption keys so the data it collects can be decrypted.
http://a

Impact​

Businesses infected by Dexter include retail stores, hotels, restaurants, banks, and private parking providers. By December 2012, around the time it was first discovered, the malware was found in 40 different countries, with most compromised machines being located in the United States, United Kingdom, and Canada.
http://a
http://a
A variant of Dexter, thought to have been modified to avoid antimalware detection by an unknown group in the UK, was linked to estimated losses in the tens of millions for banks in South Africa. South Africa's banks noticed "unusual levels of suspected fraud" after customers used credit cards at various fast-food restaurants. An updated antimalware signature was provided for all outlets suspected of using infected PoS machines. It is unknown how many credit cards were compromised in these attacks, but many were monitored for fraud after the incident.

Malware Source Code Download:-
You must reply before you can see the hidden data contained here.
 
Top