Thread: POS Malware [Botnet Panel] - TOR
View Single Post
  #2  
Old 03-31-2025, 01:42 PM
VIPVIP's Avatar

VIPVIP VIPVIP is offline
Banned
Join Date: Apr 2024
Posts: 60
Default

Quote:
Originally Posted by ParanormaL
MemPOS scans for dumps (T1/T2) and CVVs stored in memory, files, keyboard, clipboard or network packets in several different known formats by utilizing algorithms and a series of handpicked Regex.
All traffic is encrypted with SSL and transported via the Tor network to your own hidden service (.onion address), which we can assist in setting up for you in less than 2 minutes.
It's a guarantee that MemPOS performs better than any other existing POS malware. Best of all, it is extremely easy to setup and getting started with.
MemPOS catches dumps and CVVs by means of:
* Continuously scanning the memory of 32 and 64 bits processes
* Continuously scanning relevant files on all connected drives and caching those for less redundancy
* Monitoring network packets from active interfaces
* Monitoring clipboard for data transmissions
* Keylogger for detecting input. Especially effective against certain POS systems
Bot features:
* Utilizes process affinity for minimal CPU load
* Low profile with respect to CPU and memory load
* Hidden+Normal startup methods
* Process persistence (automatically re-spawn process if killed)
* Utilizing hashing of dumps/CVVs and scanned memory blocks to avoid redundancy
* Reports to panel every minute
Panel features:
* Bot info shown is ID, HWID, IP/LAN, PC/User, OS, Install date, Last seen, Dumps/Tracks, CVVs, Relapse, CPU usage
* Guest account for allowing trusted partners to view statistics and masking sensitive details (dumps/CVVs)
* Export dumps or CVVs with customizable details like selecting columns and delimiters
* Relapse level - View ratio of returning customers in % for each POS system
* Marking dumps or CVVs as sold
* Daily statistics chart
* Download and execute
* Clear tracks/cvvs
* Delete bot
Best of all, all traffic is made via SSL over Tor and the panel is easily placed behind a hidden service (.onion).
What you will receive:
+ Panel files (PHP and JS)
+ Database structure (.sql)
+ Stub (.exe)
Contact only pm or telegram —> @kevinwise
attention this is the same idiot who a few days ago tried dan pushing a virus with the article about emv reader/writher V8.6