BazarLoader

URI: https://gptkb.org/entity/BazarLoader
GPTKB entity
Statements (34)
Predicate Object
gptkbp:instanceOf malware
gptkbp:abilities evade detection
download additional payloads
establish persistence
execute arbitrary code
gptkbp:alsoKnownAs gptkb:BazarBackdoor
gptkb:BazarCall
gptkbp:commanded remote servers
gptkbp:deliveredBy gptkb:Cobalt_Strike
gptkb:TrickBot
malware
gptkbp:developedBy gptkb:TrickBot_group
gptkbp:distributedBy phishing emails
malicious attachments
malicious links
gptkbp:firstObserved 2020
https://www.w3.org/2000/01/rdf-schema#label BazarLoader
gptkbp:notable_campaign gptkb:Conti_ransomware_campaigns
gptkb:Ryuk_ransomware_campaigns
gptkbp:operatingSystem gptkb:Windows
gptkbp:relatedTo gptkb:Emotet
gptkb:TrickBot
gptkbp:target individuals
organizations
gptkbp:threats high
gptkbp:usedBy cybercriminals
gptkbp:usedFor remote access
initial access
payload delivery
gptkbp:usesMalware loader
trojan
gptkbp:writtenBy gptkb:C++
gptkbp:bfsParent gptkb:Conti
gptkbp:bfsLayer 5