Skip to content

Hide Navigation Hide TOC

Bazar (b35d9817-6ead-4dbd-a2fa-4b8e217f8eac)

Bazar is a downloader and backdoor that has been used since at least April 2020, with infections primarily against professional services, healthcare, manufacturing, IT, logistics and travel companies across the US and Europe. Bazar reportedly has ties to TrickBot campaigns and can be used to deploy additional malware, including ransomware, and to steal sensitive data.[Cybereason Bazar July 2020]

Cluster A Galaxy A Cluster B Galaxy B Level
FIN12 (6d6ed42c-760c-4964-a81e-1d4df06a8800) Tidal Groups Bazar (b35d9817-6ead-4dbd-a2fa-4b8e217f8eac) Tidal Software 1
Bazar (b35d9817-6ead-4dbd-a2fa-4b8e217f8eac) Tidal Software Wizard Spider (0b431229-036f-4157-a1da-ff16dfc095f8) Tidal Groups 1
Bazar (b35d9817-6ead-4dbd-a2fa-4b8e217f8eac) Tidal Software EXOTIC LILY (396a4361-3e84-47bc-9544-58e287c05799) Tidal Groups 1