Malware-Traffic-Analysis.net - 2021-04-14 (Wednesday) - BazaLoader (BazarLoader) activity

2021-04-14 (WEDNESDAY) - BAZALOADER (BAZARLOADER) ACTIVITY

NOTICE:

The zip archives on this page have been updated, and they now use the new password scheme. For the new password, see the "about" page of this website.

ASSOCIATED FILES:

2021-04-14-IOCs-for-BazaLoader.txt.zip 1.6 kB (1,624 bytes)
2021-04-14-BazaCall-malspam-10-examples.zip 17.7 kB (17,652 bytes)
2021-04-14-BazaLoader-infection-traffic.pcap.zip 3.9 MB (3,867,873 bytes)
2021-04-14-BazaLoader-spreadsheet-and-EXE.zip 424 kB (424,039 bytes)

NOTES:

This is an example of BazarLoader activity from "BazaCall" (also called "BazarCall") malspam that uses a callcenter to guide victims to infect their Windows computers.
An example of someone infecting their computer from one of these "BazaCall" emails can be seen in this Youtube video.

Click here to return to the main page.