General
-
Target
9b641e6d89d352b0429d4dba34cdbdc32ff5757020183c5797ff850600fc0852
-
Size
215KB
-
Sample
220427-ss9rzaehap
-
MD5
3641da1d35579df31207c2fc4b9fd169
-
SHA1
24442c150455964b21e2d010da215deb79c41380
-
SHA256
9b641e6d89d352b0429d4dba34cdbdc32ff5757020183c5797ff850600fc0852
-
SHA512
9464ee835e1cf1c74cbed69d9a64c45f569f82909a845433f0bd22e081a850e103c25793dc6c222cdd8fe9555e2cbbd4c91099e76ca43f9fa7d3308414e3d4e5
Malware Config
Targets
-
-
Target
9b641e6d89d352b0429d4dba34cdbdc32ff5757020183c5797ff850600fc0852
-
Size
215KB
-
MD5
3641da1d35579df31207c2fc4b9fd169
-
SHA1
24442c150455964b21e2d010da215deb79c41380
-
SHA256
9b641e6d89d352b0429d4dba34cdbdc32ff5757020183c5797ff850600fc0852
-
SHA512
9464ee835e1cf1c74cbed69d9a64c45f569f82909a845433f0bd22e081a850e103c25793dc6c222cdd8fe9555e2cbbd4c91099e76ca43f9fa7d3308414e3d4e5
Score10/10-
Taurus Stealer
Taurus is an infostealer first seen in June 2020.
-
Taurus Stealer Payload
-
Deletes itself
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses 2FA software files, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-