AZORult Malware Abusing RDP Protocol To Steal the Data by Establish a Remote Desktop Connection


Sophisticated AZORult Malware emerges in a new form with advanced information stealing modules that capable of stealing sensitive information from infected computers.

AZORult is one of the well-known malware that often sold in Russian forums for the higher price ($100) , since this malware contains a broad range of persistent functionality.

It uses .bit domains in the command & control server that provide a high range of anonymity, which makes difficult to detect its C2 server activity.

Read more…