Allasenha Allakore Variant Leverages Azure Cloud C2 To Steal Banking Details In Latin America
Earlier in May analysts spotted a malicious payload which was tentatively delivered to a computer in Brazil via an intricate infection chain involving Python scripts and a Delphi-developed loader. The final malicious payload that analysts named AllaSenha is specifically aimed at stealing credentials that are required to access Brazilian bank accounts leverages Azure cloud as command and control (C2) infrastructure and is another custom variant of AllaKore1 an infamous open-source RAT which is frequently leveraged to target users in Latin America.