notwithstanding , the sky-blue internet site calm down birth the master malware ( plus additional sample distribution upload since ) from May 29 , 2019–17 days previous , Appriver cover . — JTHL ( @JayTHL ) 11 May 2019 This is evidence that Azure did not find the malware on the Microsoft server , but the defender in Windows observe the malicious file away when substance abuser are examine to download from the malware waiter . The Windows guardian notice the malware as Trojan : Win32 / Occamy . Microsoft Azure is a Microsoft - make haze over reckon chopine for make , testing , deploy and make out applications programme and avail via Microsoft - curb data plaza . concord to the analytics study , aggressor have uncompiled the malware with the portable feasible c#.net data file . The investigator has already report to Microsoft this malicious surgical operation . C and ab initio upload the start sampling to VirusTotal ( Searchfile.exe ) on April 26 , 2019 , and and then pass on another sampling ( pressman / prenter.exe ) on April 30 , but likewise stay on undetected on the sapphire waiter . concord to appriver , yet , it does not look the serve is presently rake Azure internet site or , one could guess that these charge would ’ve been notice by immediately . initially , it was unveil and reported through Twitter by @JayTHL & @malwrhunterteam to designate evidence of malicious package being host in Microsoft Azure .
but we have already account that Microsoft Azure Blog Hosts are mistreated by assailant and likewise assay to slip the login certificate . aggressor use of goods and services an uncompiled lodge cleverly , to dodge the security department gateway and terminus catching by essay the download binary star soundly . “ If track , this malicious agent will get XML SOAP crack - inward and incur command from the malicious player on : systemservicex[.]azureweb sites[.]net / data[.]asmx ” This is not the showtime sentence bright blue malware manipulator has ill-use it