Powered by Zoomin Software. For more details please contactZoomin

Flowmon ADS BPATTERNS Description

Table of Contents

Gazer - description

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
Print
  • Last Updated: May 1, 2026
  • 1 minute read
    • Flowmon Products
    • Flowmon Anomaly Detection System
    • Documentation

Sources:

ESET detailed technical analysis of Gazer backdoor malware

Turla hacking group using Gazer backdoor to target governments

Gazer is a malware campaign that targets consulates, ministries, and embassies worldwide to spy on governments and diplomats. It receives encrypted commands from a remote command and control server and evades detection by using compromised, legitimate websites (that primarily use the WordPress Content Management System) as a proxy. Gazer uses a code-injection technique to take control of a machine and remain hidden for extended periods while stealing information.

Flowmon ADS detects communication with command and control servers.

Gazer malware communication pattern detected by Flowmon ADS
Gazer malware communication pattern detected by Flowmon ADS

TitleResults for “How to create a CRG?”Also Available inAlert