Polazert

Malware Profile Updated 3 months ago
Download STIX
Preview STIX
Polazert, also known as Jupyter Infostealer, SolarMarker, and Yellow Cockatoo, is a sophisticated malware that has been discovered with enhanced stealth capabilities. As reported by The Hacker News on November 7, 2023, this new version of the malware can infiltrate systems without detection, making it a significant threat to data security. It uses manipulated search engine optimization (SEO) tactics and malvertising as initial access vectors, tricking users into downloading it from suspicious websites when they are searching for popular software. The malware is particularly dangerous due to its ability to backdoor machines and harvest a wide range of credential information. This includes the computer name, the user's admin privileges, cookies, web data, browser password manager information, and other sensitive data from victim systems. Notably, it can steal logins for crypto-wallets and remote access apps, posing a serious risk to both personal and financial data. In conclusion, Polazert represents a substantial cybersecurity threat due to its advanced stealth capabilities and extensive data harvesting features. Its strategy of leveraging SEO tactics and malvertising to trick users into downloading it underscores the importance of maintaining robust cybersecurity measures and practices. Users should remain vigilant about their online activities, especially when downloading software from the internet, to protect themselves from such threats.
What's your take? (Question 1 of 5)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Yellow Cockatoo
2
The SolarMarker malware, also known as Yellow Cockatoo, Polazert, and Jupyter Infostealer, has been a persistent threat since its inception in 2020. It has steadily evolved over the years, posing significant risks to sectors such as education, healthcare, and small to medium-sized enterprises (SMEs)
Jupyter Infostealer
1
The Jupyter Infostealer, also known as Yellow Cockatoo, SolarMarker, and Polazert, is a harmful malware that has been steadily evolving since 2020. This malicious software targets Chrome and Firefox browser data, exploiting and damaging systems it infiltrates. It can infect systems through suspiciou
Jupyter
1
Jupyter, also known as SolarMarker, Yellow Cockatoo, and Jupyter Infostealer, is a malware that has been steadily evolving since 2020. This malicious software targets sectors such as education, healthcare, and small to medium-sized enterprises (SMEs). It is designed to exploit and damage computer sy
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Malware
Backdoor
Malvertising
Infostealer
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the Polazert Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
9 months ago
North Korea-linked BlueNoroff's macOS malware variant targets financial firms
CERT-EU
9 months ago
Stealthier Jupyter infostealer discovered
CERT-EU
9 months ago
New Jupyter Infostealer Version Emerges with Sophisticated Stealth Tactics
DARKReading
8 months ago
Evasive Jupyter Infostealer Campaign Showcases Dangerous Variant