Alina (malware)

Alina is a Point of Sale Malware or POS RAM Scraper that is used by cybercriminals to scrape credit card and debit card information from the point of sale system.[1] It first started to scrape information in late 2012. It resembles JackPOS Malware.[2][3]

Process of Alina POS RAM Scraper

Once executed, it gets installed on the user's computer and checks for updates. If an update is found, it removes the existing Alina code and installs the latest version. Then, for new installations, it adds the file path to an AutoStart runkey to maintain persistence. Finally, it adds java.exe to the %APPDATA% directory and executes it using the parameter alina=<path_to_executable> for new installations or, update=<orig_exe>;<new_exe> for upgrades.[4][5][6]

Alina inspects the user's processes with the help of Windows API calls:

  • CreateToolhelp32Snapshot() takes a snapshot of all running processes
  • Process32First()/Process32Next() retrieve the track 1 and track 2 information in the process memory

Alina maintains a blacklist of processes, if there is no process information in the blacklist it uses OpenProcess() to read and process the contents in the memory dump. Once the data is scraped Alina sends it to C&C servers using an HTTP POST command that is hardcoded in binary.[6]

See also

References

  1. ^ "Alina POS malware "sparks" off a new variant". Trustwave. 18 December 2014.
  2. ^ "Researchers ID New Variant of Alina PoS Malware | SecurityWeek.Com". www.securityweek.com. 18 December 2014.
  3. ^ Alina POS Malware
  4. ^ "PoS RAM Scraper Malware: Past, Present, and Future" (PDF).
  5. ^ "PoS RAM Scraper Malware Mechanism". Archived from the original on 2016-08-10. Retrieved 2016-06-22.
  6. ^ a b "Alina: Casting a Shadow on POS". Trustwave. 8 May 2013.
Stub icon

This malware-related article is a stub. You can help Wikipedia by expanding it.

Read other articles:

Distorsi tetragonal

Artikel ini perlu diwikifikasi agar memenuhi standar kualitas Wikipedia. Anda dapat memberikan bantuan berupa penambahan pranala dalam, atau dengan merapikan tata letak dari artikel ini. Untuk keterangan lebih lanjut, klik [tampil] di bagian kanan. Mengganti markah HTML dengan markah wiki bila dimungkinkan. Tambahkan pranala wiki. Bila dirasa perlu, buatlah pautan ke artikel wiki lainnya dengan cara menambahkan [[ dan ]] pada kata yang bersangkutan (lihat WP:LINK untuk keterangan lebih lanjut...

 

Antonio Armijo

Antonio Armijo Antonio Armijo adalah seorang penjelajah dan pedagang Spanyol yang terkenal untuk memimpin partai karavan dagang pertama melintasi Las Vegas Valley tahun 1829.[1] Rutenya dikenal sebagai Old Spanish Trail (rute dagang). Ia dan orang Meksiko menamai daerah itu Las Vegas yang merupakan bahasa Spanyol untuk padang rumput setelah mengikutinya dari Sungai Colorado,[2] setelah ia berkeinginan menjelajah dan membuat rute dagang baru dari New Mexico ke Los Angeles, Cali...

 

Billlie

BilllieLogo resmi BilllieInformasi latar belakangAsalSeoul, Korea SelatanGenreK-popTahun aktif2021 (2021)—sekarangLabelMystic StorySitus webSitus web resmiAnggota Moon Sua Suhyeon Haram Tsuki Sheon Siyoon Haruna Billlie (Hangul: 빌리; terkadang digayakan sebagai Billlǃə) adalah grup vokal wanita asal Korea Selatan yang dibentuk oleh Mystic Story pada tahun 2021. Grup ini pada awalnya terdiri dari enam orang anggota: Moon Sua, Suhyeon, Haram, Tsuki, Siyoon dan Haruna. Anggo...

Leonhard Tietz

This article needs additional citations for verification. Please help improve this article by adding citations to reliable sources. Unsourced material may be challenged and removed.Find sources: Leonhard Tietz – news · newspapers · books · scholar · JSTOR (July 2022) (Learn how and when to remove this template message) Flora and Leonhard Tietz Leonhard Tietz (March 3 1849 - November 14 1914) was a German department store entrepreneur and art collector ...

 

Rhinocéros laineux

Si ce bandeau n'est plus pertinent, retirez-le. Cliquez ici pour en savoir plus. Cet article ne cite pas suffisamment ses sources (janvier 2023). Si vous disposez d'ouvrages ou d'articles de référence ou si vous connaissez des sites web de qualité traitant du thème abordé ici, merci de compléter l'article en donnant les références utiles à sa vérifiabilité et en les liant à la section « Notes et références ». En pratique : Quelles sources sont attendues ? C...

 

Diapir

Artikel ini tidak memiliki referensi atau sumber tepercaya sehingga isinya tidak bisa dipastikan. Tolong bantu perbaiki artikel ini dengan menambahkan referensi yang layak. Tulisan tanpa sumber dapat dipertanyakan dan dihapus sewaktu-waktu.Cari sumber: Diapir – berita · surat kabar · buku · cendekiawan · JSTOR Lampu lava Mathmos Astro. Sebuah lampu lava mengilustrasikan tipe Ketidakstabilan Rayleigh–Taylor dalam diapirisme yang mempunyai tekanan tekt...

1996 Reform Party presidential primaries

1996 Reform Party presidential primaries 1996 2000 →   Nominee Ross Perot Richard Lamm Home state Texas Colorado Running mate Pat Choate Ed Zschau States carried 47 3 + D.C. Popular vote 32,145 17,121 Percentage 65.3% 34.8% Mail-In Presidential Primary results map. The Reform Party of the United States of America (RPUSA) was founded in 1995 by Ross Perot. Because the party had just recently been formed, the traditional system of presidential primaries in u...

 

Оппии

Оппиилат. Oppii Ветви рода Корницен, Сабин Подданство Древний Рим Гражданская деятельность консулы, децимвир, народные трибуны, эдил Военная деятельность полководцы, флотоводцы Религиозная деятельность весталка О́ппии (лат. Oppii) — древние римские патрицианский и пле...

 

Bernard Montgomery

British Army officer (1887–1976) General Montgomery redirects here. For other uses, see General Montgomery (disambiguation). Field Marshal The Right HonourableThe Viscount Montgomery of AlameinMontgomery in 1943Nickname(s)MontyThe Spartan GeneralBorn(1887-11-17)17 November 1887[1]Kennington, Surrey, EnglandDied24 March 1976(1976-03-24) (aged 88)Alton, Hampshire, EnglandBuriedHoly Cross Churchyard, Binsted, HampshireAllegianceUnited KingdomService/branchBritish ArmyYears of...

Donald Liao

Donald P. H. LiaoCBE, JP廖本懷Donald Liao in 2013Secretary for District AdministrationIn officeFebruary 1985 – October 1989GovernorSir Edward YoudeSir David WilsonPreceded byDavid Akers-JonesSucceeded byPeter TsaoSecretary for HousingIn office15 May 1980 – 10 February 1985GovernorSir Murray MacLehoseSir Edward YoudePreceded byAlan James ScottSucceeded byDavid Robert Ford Personal detailsBorn (1929-10-29) 29 October 1929 (age 94)Kobi, Tainan Prefecture, Japanese ...

 

Подпольная империя

Подпольная империяангл. Boardwalk Empire Жанр криминальная драма Создатель Теренс Уинтер Режиссёры Мартин СкорсезеТим Ван Паттен В главных ролях Стив БушемиМайкл ПиттКелли МакдональдМайкл ШэннонШей УигемАлекса ПалладиноМайкл СтулбаргСтивен ГрэмВинсент ПьяццаПас де ла У...

 

伊斯兰合作组织

伊斯兰合作组织Organisation of Islamic Cooperation(英語)Organisation de la Coopération Islamique(法語)منظمة التعاون الإسلامي(阿拉伯語) 旗帜格言:To safeguard the interests and ensure the progress and well-being of Muslims  成员国  观察国  暂停会籍行政总部 沙地阿拉伯吉达 官方语言阿拉伯语英语法语类型宗教成员国57个在籍成员国(英语:Member states of the Organisation ...

Florida Gators

Intercollegiate sports teams of the University of Florida Athletic teams representing University of Florida Florida GatorsUniversityUniversity of FloridaConferenceSEC (primary)The American (women's lacrosse)NCAADivision I (FBS)Athletic directorScott StricklinLocationGainesville, FloridaVarsity teams19 (8 men's, 11 women's)Football stadiumBen Hill Griffin StadiumBasketball arenaExactech Arena at Stephen C. O'Connell CenterBaseball stadiumCondron Family BallparkSoftball stadiumKatie Seashole Pr...

 

Alejandro Sabella

Alejandro Sabella Informasi pribadiNama lengkap Alejandro SabellaTanggal lahir (1954-11-05)5 November 1954Tempat lahir Buenos Aires, ArgentinaTanggal meninggal 8 Desember 2020(2020-12-08) (umur 66)Tempat meninggal Buenos Aires, ArgentinaTinggi 171 cm (5 ft 7 in)Posisi bermain GelandangKarier senior*Tahun Tim Tampil (Gol)1974–1978 River Plate 117 (11)1978–1980 Sheffield United 76 (8)1980–1981 Leeds United 23 (2)1982–1987 Estudiantes (LP) 149 (10)1985 → Grêmio (p...

 

Al-Rusafa, Syria

This article is about the fortress and village in northwestern Syria. For the historic site in central Syria, see Resafa. Village in Hama, SyriaAl-Rusafa الرصافةRassafah, Rosafah, ResafiVillageAl-RusafaLocation in SyriaCoordinates: 35°1′59″N 36°18′9″E / 35.03306°N 36.30250°E / 35.03306; 36.30250Country SyriaGovernorateHamaDistrictMasyafSubdistrictMasyafPopulation (2004) • Total1,608Time zoneUTC+2 (EET) • Summer (DST)...

Johnson Publishing Company

American publishing company based in Chicago, Illinois (1942–2019) Johnson Publishing CompanyCompany typePrivately held companyIndustryMass mediaFoundedNovember 1942; 81 years ago (1942-11)Founder John H. Johnson Eunice W. Johnson DefunctApril 2019; 5 years ago (2019-04)Headquarters200 S. Michigan AvenueChicago, Illinois, U.S.[1]Key people(chief executive officer)Products Books Magazines Television Cosmetics RevenueUS$90 million (c....

 

Delta Junction, Alaska

City in Alaska, United States City in Alaska, United StatesDelta JunctionCityAerial view showing Delta Junction and neighboring Big Delta (1973). FlagDelta JunctionLocation in AlaskaCoordinates: 64°02′52″N 145°43′07″W / 64.04778°N 145.71861°W / 64.04778; -145.71861CountryUnited StatesStateAlaskaCensus AreaSoutheast FairbanksIncorporatedDecember 1960[1]Government • MayorJW Musgrove[2] • State senatorClick Bishop (R)...

 

بينجامين ميندي

بينجامين ميندي (بالفرنسية: Benjamin Mendy)‏    معلومات شخصية الاسم الكامل بينجامين ميندي الميلاد 17 يوليو 1994 (العمر 29 سنة)[1]مانشستر، إنجلترا الطول 1.85 م (6 قدم 1 بوصة) مركز اللعب مدافع الجنسية فرنسا السنغال  الديانة الإسلام[2]  معلومات النادي النادي الحالي ل�...

Raman Osman

This article needs additional citations for verification. Please help improve this article by adding citations to reliable sources. Unsourced material may be challenged and removed.Find sources: Raman Osman – news · newspapers · books · scholar · JSTOR (February 2019) (Learn how and when to remove this message) Sir Raman Osman3rd Governor-General of MauritiusIn office27 December 1972 – 31 October 1977MonarchElizabeth IIPrime MinisterSeewoosa...

 

Senna-Saint-Denis

Questa voce o sezione sull'argomento Francia non cita le fonti necessarie o quelle presenti sono insufficienti. Puoi migliorare questa voce aggiungendo citazioni da fonti attendibili secondo le linee guida sull'uso delle fonti. Senna-Saint-DenisdipartimentoSeine-Saint-Denis LocalizzazioneStato Francia Regione Île-de-France AmministrazioneCapoluogoBobigny Presidente del Consiglio dipartimentaleClaude Bartolone (PS) Data di istituzione1º gennaio 1968 TerritorioCoordinatedel...