← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Magecart: Swiper, No Swiping
WHITE Magecart AlienVault 2019-09-27 Modified: 2019-09-27
504
IOCs
HIGH VOLUME
Threat hunters from IBM X-Force Incident Response and Intelligence Services (IRIS) have identified malicious activity we have attributed to a financially motivated cybercrime faction known as Magecart 5 (MG5). Our research reveals that MG5 is likely testing malicious code designed for injection into benign JavaScript files loaded by commercial grade Layer 7 routers, routers that are typically used by airports, casinos, hotels and resorts, to name a few. In that attack scenario, the compromise of the router can allow for malicious ad injection and pivoting to other parts of the network.
magecart
Indicators of Compromise (22 / 504 total)
All domain FileHash-SHA256 URL FileHash-MD5
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA256 2dc2764e35eebdabfcbba23741fedf6afce437a4eaa730fc5d150cd559ccd706 2019-09-27
FileHash-SHA256 460f638ce0f042cc6c3c308a762b6c525065fa7c3c5e00b08d0a62243be6e932 2019-09-27
FileHash-SHA256 b7e459344bf01f27e817e536641138f15922b723afcf629603c7c41d86e3c0f3 2019-09-27
FileHash-SHA256 d1dcb44a5dfa3c23e137b32d6b78396c38980785a31e0622070ab7d1dd3a9e49 2019-09-27
FileHash-SHA256 7adf8ba27f4f18ab7e69e5689cf2affc1aaaa53a258861d6f060b6f1365ba10c 2019-09-27
FileHash-SHA256 2d01e61a73d64c45271f9407dde61b063e30a7dc9188f1353a634fe462f285b4 2019-09-27
FileHash-SHA256 6e48414f4a2b3ad040eace3d74b530bf89610d64259ddc51fd4f4b298b48607b 2019-09-27
FileHash-SHA256 860adcff5a661dc7dcee0aa1eeb5bb898c7887b07847a5bd85e142ef088bd478 2019-09-27
FileHash-SHA256 8130b9c7ea2969d9e1bfa5b3ea5c9be05ede2fc63c8cebfeca6e9c7fda022974 2019-09-27
FileHash-SHA256 b66f75d6df1a3439afe27aad530bb812a3dc964e41dee8afc8d2f05e5967396d 2019-09-27
FileHash-SHA256 72dd57685ff3ef5e602a7e01fbf990117f100a7b6a79cd45f76a32af020d4008 2019-09-27
FileHash-SHA256 934fea1177556bc3fa7204b4a770c9c0567d04b87ca6d141cdb360d50e249cc1 2019-09-27
FileHash-SHA256 cb6c5e4b0d20ddbd33e7425d4cdb60d86bd38e0abe30082e31edcd8f82b1bb04 2019-09-27
FileHash-SHA256 393eafbdaa38b82db7431557b976a329fd0726d77976c650ee7429d8e85771a5 2019-09-27
FileHash-SHA256 bfac87b7793504629f5fe6f6b2482c961901c52f1f70e2592c66d5f945c6ea42 2019-09-27
FileHash-SHA256 390b778497f71989058c95dc12628f969e995d2f261f128e8c14aa2c262737d7 2019-09-27
FileHash-SHA256 5f59f3a931b266be402f4940c78676ea3917ce069d16656111a527331250a5ca 2019-09-27
FileHash-SHA256 6f441a1dbba7a9b010d3653b05050559b8b36a91a06c76841c6b235336c233bf 2019-09-27
FileHash-SHA256 48c7d62a34f95a453d41e0ec0107ad64bf199c52f44a6baefce525a6bc2542cc 2019-09-27
FileHash-SHA256 6781905ac7ad8dbdab2094879ed21e1cd116b601ddbda6a07df7914e9a9520cf 2019-09-27
FileHash-SHA256 f709fd74d9b47a8a59ec0c09bdab720b168da4967c4f94e962ba1a65d147b278 2019-09-27
FileHash-SHA256 3f1cb9918a465648b3a898552025ca746b7150d3b5da29b9e05786ffb04a86b3 2019-09-27
References (1)
↗ https://www.ibm.com/downloads/cas/O3W1LZAZ