glasscannon Posted December 2, 2014 Share Posted December 2, 2014 Hi guys, My coworker's daughter received a USB credit card in the mail with no name or any indication of where it came from on the box. It basically looks like an American Express Platinum but with a USB that flips out. She was going to toss it out but gave it to me knowing I'm into these kinds of things. I want to plug the card into an old beater machine and see what's up with it, but I'm not sure where to begin or what to look for. My current plan is to look at instructions for setting up badUSB and see if there's any correlation to this USB device. Any ideas of what else I can look for? Pictures are always nice so I attached a picture of it. Quote Link to comment Share on other sites More sharing options...
Broti Posted December 3, 2014 Share Posted December 3, 2014 My checklist would be: get obsolete PC without network connection Create Log with Autoruns (for comparison) Start Process Monitor check for malware, rootkits check file system / boot record unplug it if finished start Autoruns again have a look at Process Monitor capture Quote Link to comment Share on other sites More sharing options...
glasscannon Posted December 3, 2014 Author Share Posted December 3, 2014 Thanks Broti I'm going to give that a shot tonight. Quote Link to comment Share on other sites More sharing options...
fugu Posted December 4, 2014 Share Posted December 4, 2014 Before you plug it in, I would do a couple of things. Call American Express and ask if they can tell you anything about this, if they even know its legit. "you can't con an honest man". This smells of a con. Next I would break the plastic case open and look at the hareware inside (if at all possible without damaging it). look for s/n numbers on any of the parts. google the part numbers, you might get lucky as to the pcb. its a start anyway. Quote Link to comment Share on other sites More sharing options...
Broti Posted December 4, 2014 Share Posted December 4, 2014 After a quick google search: It's a 4gb stick and can be bought at tmart. Quote Link to comment Share on other sites More sharing options...
GuardMoony Posted December 4, 2014 Share Posted December 4, 2014 Also i would use like a linux or something to look at it. If it got some bad bugs on it chances are high its for windows. Be sure to have some debug tools on the machine and stuff. Maybe try some usb traffic sniffing. http://dan3lmi.blogspot.be/2012/10/sniffing-usb-traffic-different.html Quote Link to comment Share on other sites More sharing options...
sud0nick Posted December 4, 2014 Share Posted December 4, 2014 This interesting. I would like to receive on myself so I can play around with it and see what its purpose is. It will most likely attempt to connect to a server over the internet to send information and I would love to poke around that box. Quote Link to comment Share on other sites More sharing options...
Sud0x3 Posted December 6, 2014 Share Posted December 6, 2014 Im interested to see what you found on this device. Was the number printed on the card associated with an of your friends personal accounts. I have heard of people leaving malicious usb devices in public places but this is taking it to a new level, more likely to be used in targeted attacks i would have though. Once you have done your investigation would be cool to see what is inside the card. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.