General

  • Target

    80ffd915424b4a5d7195b79b57919c9f

  • Size

    357KB

  • Sample

    211018-l1t8xsdda9

  • MD5

    80ffd915424b4a5d7195b79b57919c9f

  • SHA1

    4388d8a02cd9d0a129b59ed8985084cfc734a849

  • SHA256

    cd1d8fddbf8cbd4b69eab6a172ef3b6fb390e640165d18507c3e692f36840745

  • SHA512

    89697e652c4e59714a839f63a6b92b113448b9b3f3f6a5a5a659dd842019e14fcabb6e1b75e0b65f66c8f01ff2d3847efb8230cfaa30cab436b3bfc017eb1b73

Malware Config

Targets

    • Target

      80ffd915424b4a5d7195b79b57919c9f

    • Size

      357KB

    • MD5

      80ffd915424b4a5d7195b79b57919c9f

    • SHA1

      4388d8a02cd9d0a129b59ed8985084cfc734a849

    • SHA256

      cd1d8fddbf8cbd4b69eab6a172ef3b6fb390e640165d18507c3e692f36840745

    • SHA512

      89697e652c4e59714a839f63a6b92b113448b9b3f3f6a5a5a659dd842019e14fcabb6e1b75e0b65f66c8f01ff2d3847efb8230cfaa30cab436b3bfc017eb1b73

    • Taurus Stealer

      Taurus is an infostealer first seen in June 2020.

    • Taurus Stealer Payload

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses 2FA software files, possible credential harvesting

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks