Password and Credit Card-Stealing Azorult Malware Updated: More Weaponized

Exponentially increasing the potency of the Azorult, its operators configured a new update for the malware which has been stealing passwords, bank card main points, and cryptocurrency since its origination in 2016.

The Azorult malware, more weaponized than ever, leave victims unarmed against the cyber attack which allows fraudsters to steal their credentials including passwords, browsing histories, bank card main point and contents of their cryptocurrency wallets.

Well summarized by the researchers at tech safety corporate Test Level, “Considerably up to date”, is the phrase unanimously devised attempting to describe the degree of update the new model undertook.

“Substantially updated” is how the Check Point viewed it, the tech company says that the updated version is being marketed in an underground forum.

The updated model is equipped with novel features to rob the victims’ wallet off additional forms of cryptocurrency – BitcoinGold, electrumG, btcprivate (electrum-btcp), bitcore and Exodus Eden are the probable targets.

Azorult’s developer boats further enhancements to the cryptocurrency wallet stealer parts and improvements to the loader, this reflects the meteoric emergence of the gray sphere of malware advancements.

As noted by the researchers, the inclusion of a new encryption method to obscure the domain name coupled with a new key for connecting to the command and regulation server makes the malware comparatively deadlier and distinct from the earlier versions.

Azorult made its debut appearance in the market on 4th of the October; it was followed by the online leaks of source code for Azorult versions 3.1 and 3.2.  Check Point noticed, Gazorp (a malware builder that lets users generate a previous model of Azorult at zero expenses) being powered by using free tools.

Remarking the addition as worthwhile, Israel Gubi, a malware researcher at Check Point says “It is plausible that the Azorult’s author would like to introduce new features to the malware and make it worthy as a product in the underground market,”

The updated version of Azorult is made to penetrate via the RIG exploit kit, it exploits the vulnerabilities in Internet Explorer and Flash Player to launch JavaScript, Flash, and VBScript-based attacks to deliver malware to users.

 On the protection front, users are advised to ensure that they have all the relevant software updates installed as Azorult is reportedly reliant on vulnerabilities that aren’t the first of their kind.

Leave a Reply