2021-03-25 (THURSDAY) - MEDICAL REMINDER SERVICE-THEMED MALSPAM PUSHING BAZALOADER

NOTICE:

• The zip archives on this page have been updated, and they now use the new password scheme.  For the new password, see the "about" page of this website.

UPDATE:

• I originally thought these were just callcenter scam emails; however, the callcenter operators direct you to a webpage and ask you to download a malicious Excel document designed to infect your computer with BazaLoader (BazarLoader) malware.
• This has been dubbed the "BazaCall" campaign.
• I made a Youtube video recording how BazaCall works, which is available here.

ASSOCIATED FILES:

• 2021-03-25-IOCs-from-fake-trial-malspam.txt.zip   1.1 kB   (1,085 bytes)
• 2021-03-25-fake-trial-malspam-10-examples.zip   19.2 kB   (19,172 bytes)

 

IMAGES

Shown above:  Screenshot from one of these emails.

 

Click here to return to the main page.