The payment card scraper script discovered on GitHub was uploaded on April 20 and it was obfuscated using hexadecimal encoding as unearthed by Malwarebytes security researcher Jérôme Segura.