2021-04-15 (THURSDAY) - BAZALOADER (BAZARLOADER) ACTIVITY

NOTICE:

• The zip archives on this page have been updated, and they now use the new password scheme.  For the new password, see the "about" page of this website.

ASSOCIATED FILES:

• 2021-04-15-BazaCall-malspam-info.txt.zip   1.4 kB   (1,419 bytes)
• 2021-04-15-BazaLoader-malware-notes.txt.zip   0.8 kB   (805 bytes)
• 2021-04-15-BazaCall-malspam-14-examples.zip   25.5 kB   (25,493 bytes)
• 2021-04-15-BazaCall-BazaLoader-infections-2-pcaps.zip   7.7 MB   (7,714,543 bytes)
• 2021-04-15-BazaLoader-malware-2-runs.zip   1.5 MB   (1,505,334 bytes)

NOTES:

• This is an example of BazarLoader activity from "BazaCall" (also called "BazarCall") malspam that uses a callcenter to guide victims to infect their Windows computers.
• An example of someone infecting their computer from one of these "BazaCall" emails can be seen in this Youtube video.

 

Click here to return to the main page.