046d664c5ed7f8bab938bc3709e328c3.exe

General
Target

046d664c5ed7f8bab938bc3709e328c3.exe

Size

346KB

Sample

210421-c6px7entpj

Score
10 /10
MD5

046d664c5ed7f8bab938bc3709e328c3

SHA1

76b7226474b83973c8104ead1743ee9240e42e3d

SHA256

828286a465b64587f2cfdb7b10319fca29c9a6b8c6903edc26044edca78e69ed

SHA512

5629b784bc51695d40f5af3bb0270e601a2692fdeee973841dfbdf14ab28245caba3848d36947dbfbb45e391e5fac0d862a751658e9fae5e7084c0bd48bfaa5c

Malware Config
Targets
Target

046d664c5ed7f8bab938bc3709e328c3.exe

MD5

046d664c5ed7f8bab938bc3709e328c3

Filesize

346KB

Score
10 /10
SHA1

76b7226474b83973c8104ead1743ee9240e42e3d

SHA256

828286a465b64587f2cfdb7b10319fca29c9a6b8c6903edc26044edca78e69ed

SHA512

5629b784bc51695d40f5af3bb0270e601a2692fdeee973841dfbdf14ab28245caba3848d36947dbfbb45e391e5fac0d862a751658e9fae5e7084c0bd48bfaa5c

Tags

Signatures

  • Taurus Stealer

    Description

    Taurus is an infostealer first seen in June 2020.

    Tags

  • Taurus Stealer Payload

  • Deletes itself

  • Reads user/profile data of web browsers

    Description

    Infostealers often target stored browser data, which can include saved credentials etc.

    Tags

    TTPs

    Data from Local System Credentials in Files
  • Accesses 2FA software files, possible credential harvesting

    Tags

    TTPs

    Data from Local System Credentials in Files
  • Checks installed software on the system

    Description

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    Tags

    TTPs

    Query Registry

Related Tasks

MITRE ATT&CK Matrix
Command and Control
    Credential Access
    Defense Evasion
      Discovery
      Execution
        Exfiltration
          Impact
            Initial Access
              Lateral Movement
                Persistence
                  Privilege Escalation
                    Tasks

                    static1