Magecart enhancements. Another variant of this skimmer script targets the Magento platform. The ThreatLabz team had analyzed a similar script in previousUse of fake iframe payment fields specific to payment platforms. We have noticed a few enhancements to this. The skimmer script is specific to the payment platform, such as Braintree and Stripe.