2021-04-16 (FRIDAY) - BAZALOADER (BAZARLOADER) ACTIVITY

NOTICE:

• The zip archives on this page have been updated, and they now use the new password scheme.  For the new password, see the "about" page of this website.

ASSOCIATED FILES:

• 2021-04-16-BazaCall-malspam-info.txt.zip   1.1 kB   (1,179 bytes)
• 2021-04-16-BazaLoader-malware-notes.txt.zip   1.0 kB   (1,045 bytes)
• 2021-04-16-BazaCall-malspam-10-examples.zip   17.7 kB   (17,717 bytes)
• 2021-04-16-BazaCall-BazaLoader-infection.pcap.zip   3.8 MB   (3,773,115 bytes)
• 2021-04-16-BazaLoader-malware-and-artifacts.zip   701 kB   (701,118 bytes)

NOTES:

• This is an example of BazarLoader activity from "BazaCall" (also called "BazarCall") malspam that uses a callcenter to guide victims to infect their Windows computers.
• An example of someone infecting their computer from one of these "BazaCall" emails can be seen in this Youtube video.

 

Click here to return to the main page.