General

  • Target

    901ca105a7ead8e314868ed3e7a91fd6

  • Size

    227KB

  • Sample

    211018-l1vjpaddb5

  • MD5

    901ca105a7ead8e314868ed3e7a91fd6

  • SHA1

    69a78802e41620bf0ae65bb702bb91a8028852bd

  • SHA256

    f90366b3d22b972d6821ca8d008570b58475b7f516d3838d70ae401c786e8080

  • SHA512

    0bea599648b7a3b58bc2013612b756e8a7acaf0a6e550670940afc1b3f2882bebb80ca94981c70d67bc8cf67fc382be87e4d54b32848ed37118b9e7fd8687b4c

Malware Config

Targets

    • Target

      901ca105a7ead8e314868ed3e7a91fd6

    • Size

      227KB

    • MD5

      901ca105a7ead8e314868ed3e7a91fd6

    • SHA1

      69a78802e41620bf0ae65bb702bb91a8028852bd

    • SHA256

      f90366b3d22b972d6821ca8d008570b58475b7f516d3838d70ae401c786e8080

    • SHA512

      0bea599648b7a3b58bc2013612b756e8a7acaf0a6e550670940afc1b3f2882bebb80ca94981c70d67bc8cf67fc382be87e4d54b32848ed37118b9e7fd8687b4c

    • Taurus Stealer

      Taurus is an infostealer first seen in June 2020.

    • Taurus Stealer Payload

    • Deletes itself

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses 2FA software files, possible credential harvesting

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks