S0534Windows

S0534Bazar

Platforms
1
ATT&CK
14.1
References
5

Description

[Bazar](https://attack.mitre.org/software/S0534) is a downloader and backdoor that has been used since at least April 2020, with infections primarily against professional services, healthcare, manufacturing, IT, logistics and travel companies across the US and Europe. [Bazar](https://attack.mitre.org/software/S0534) reportedly has ties to [TrickBot](https://attack.mitre.org/software/S0266) campaigns and can be used to deploy additional malware, including ransomware, and to steal sensitive data.(Citation: Cybereason Bazar July 2020)

Platforms· 1

Windows

References

  1. https://attack.mitre.org/software/S0534
  2. https://www.cybereason.com/blog/a-bazar-of-tricks-following-team9s-development-cycles
  3. https://www.fireeye.com/blog/threat-research/2020/10/kegtap-and-singlemalt-with-a-ransomware-chaser.html
  4. https://research.nccgroup.com/2020/06/02/in-depth-analysis-of-the-new-team9-malware-family/
  5. https://www.crowdstrike.com/blog/wizard-spider-adversary-update/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
Babuk
Software
Anchor
Software
Briba
Software
SDBbot
Software
QakBot
Campaign
C0015
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.