General

  • Target

    e7ee75502c448622c42e18d44a6dc55dbd1e4f0dd3a78a4b618019b810bef951

  • Size

    2.6MB

  • Sample

    220329-1q9cesbgb9

  • MD5

    9b30d4145196a45469f5084b28aecd93

  • SHA1

    57b49d5fb9c46e1d7d8050bfe42204cb48da6be6

  • SHA256

    e7ee75502c448622c42e18d44a6dc55dbd1e4f0dd3a78a4b618019b810bef951

  • SHA512

    930e6577536a46c02e25b91ce055caa883ae96cb51e8eea87eba325605afe63c9bc4517e76508995987ecb07c8718ccb8de69c1dea2e85d40c2c61a8e8458024

Score
10/10

Malware Config

Targets

    • Target

      e7ee75502c448622c42e18d44a6dc55dbd1e4f0dd3a78a4b618019b810bef951

    • Size

      2.6MB

    • MD5

      9b30d4145196a45469f5084b28aecd93

    • SHA1

      57b49d5fb9c46e1d7d8050bfe42204cb48da6be6

    • SHA256

      e7ee75502c448622c42e18d44a6dc55dbd1e4f0dd3a78a4b618019b810bef951

    • SHA512

      930e6577536a46c02e25b91ce055caa883ae96cb51e8eea87eba325605afe63c9bc4517e76508995987ecb07c8718ccb8de69c1dea2e85d40c2c61a8e8458024

    Score
    10/10
    • Taurus Stealer

      Taurus is an infostealer first seen in June 2020.

    • Taurus Stealer Payload

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks