{
	"id": "ae0dfa96-de26-4e33-a746-8895c7d27ab6",
	"created_at": "2026-04-06T00:08:08.565652Z",
	"updated_at": "2026-04-10T03:21:37.02559Z",
	"deleted_at": null,
	"sha1_hash": "7547126758ec0eeb30de5f376ecd33dfea122d69",
	"title": "Pro POS - Threat Group Cards: A Threat Actor Encyclopedia",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 47212,
	"plain_text": "Pro POS - Threat Group Cards: A Threat Actor Encyclopedia\r\nArchived: 2026-04-02 10:52:09 UTC\r\nHome \u003e List all groups \u003e List all tools \u003e List all groups using tool Pro POS\r\n Tool: Pro POS\r\nNames Pro POS\r\nCategory Malware\r\nType POS malware, Backdoor, Credential stealer, Rootkit, Tunneling\r\nDescription\r\n(Talos) Pro PoS is simple-to-use PoS malware that is available for purchase, enabling\r\nmultiple threat actors to easily take advantage of this malware to target businesses. The\r\nfunctionality of Pro PoS seems fairly extensive according to recent press releases. These\r\nclaims include the following:\r\n1. Tor support\r\n2. Rootkit functionalities\r\n3. Mechanisms to avoid antivirus detection\r\n4. Polymorphic engine\r\nInformation \u003chttps://blog.talosintelligence.com/2015/12/pro-pos.html\u003e\r\nAlienVault OTX \u003chttps://otx.alienvault.com/browse/pulses?q=tag:pro%20pos\u003e\r\nLast change to this tool card: 13 June 2020\r\nDownload this tool card in JSON format\r\nAll groups using tool Pro POS\r\nChanged Name Country Observed\r\nUnknown groups\r\n  _[ Interesting malware not linked to an actor yet ]_  \r\n1 group listed (0 APT, 0 other, 1 unknown)\r\nhttps://apt.etda.or.th/cgi-bin/listgroups.cgi?u=6d58bc95-cf2e-434c-b787-38c99c1fe68d\r\nPage 1 of 2\n\nSource: https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=6d58bc95-cf2e-434c-b787-38c99c1fe68d\r\nhttps://apt.etda.or.th/cgi-bin/listgroups.cgi?u=6d58bc95-cf2e-434c-b787-38c99c1fe68d\r\nPage 2 of 2\n\nUnknown groups _[ Interesting malware not linked to an actor yet ]_\n1 group listed (0 APT, 0 other, 1 unknown) \n   Page 1 of 2",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"references": [
		"https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=6d58bc95-cf2e-434c-b787-38c99c1fe68d"
	],
	"report_names": [
		"listgroups.cgi?u=6d58bc95-cf2e-434c-b787-38c99c1fe68d"
	],
	"threat_actors": [],
	"ts_created_at": 1775434088,
	"ts_updated_at": 1775791297,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/7547126758ec0eeb30de5f376ecd33dfea122d69.pdf",
		"text": "https://archive.orkl.eu/7547126758ec0eeb30de5f376ecd33dfea122d69.txt",
		"img": "https://archive.orkl.eu/7547126758ec0eeb30de5f376ecd33dfea122d69.jpg"
	}
}