taurus | ccfaa5b52f72dbb3f3b51a4f31ea6d80ef039a4c4fa9676e512f8ca56f7b7cbb | Triage

Submit
Reports

Overview

overview

Static

static

ccfaa5b52f...bb.exe

windows7_x64

ccfaa5b52f...bb.exe

windows10-2004_x64

Sharing

General

Target

ccfaa5b52f72dbb3f3b51a4f31ea6d80ef039a4c4fa9676e512f8ca56f7b7cbb
Size

196KB
Sample

220427-ssyppsahf4
MD5

0225c79b1de4ffeea052cc3c6fc56b99
SHA1

484473600c2f2658b412e4c4d10f5450574bf5fe
SHA256

ccfaa5b52f72dbb3f3b51a4f31ea6d80ef039a4c4fa9676e512f8ca56f7b7cbb
SHA512

f8ecd009c04a14cf9a398a96c05e056ae7cbfeb417911ec4c5cf96029991ae315d455e4756b5946231d79e0d50507145b767e86989dce83c19195e7ad52914b2

Score

10^/10

taurus discovery spyware stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

ccfaa5b52f72dbb3f3b51a4f31ea6d80ef039a4c4fa9676e512f8ca56f7b7cbb.exe

Resource

win7-20220414-en

taurus discovery spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ccfaa5b52f72dbb3f3b51a4f31ea6d80ef039a4c4fa9676e512f8ca56f7b7cbb.exe

Resource

win10v2004-20220414-en

taurus discovery spyware stealer trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  ccfaa5b52f72dbb3f3b51a4f31ea6d80ef039a4c4fa9676e512f8ca56f7b7cbb
- Size
  
  196KB
- MD5
  
  0225c79b1de4ffeea052cc3c6fc56b99
- SHA1
  
  484473600c2f2658b412e4c4d10f5450574bf5fe
- SHA256
  
  ccfaa5b52f72dbb3f3b51a4f31ea6d80ef039a4c4fa9676e512f8ca56f7b7cbb
- SHA512
  
  f8ecd009c04a14cf9a398a96c05e056ae7cbfeb417911ec4c5cf96029991ae315d455e4756b5946231d79e0d50507145b767e86989dce83c19195e7ad52914b2
Score

10^/10

taurus discovery spyware stealer trojan
- Taurus Stealer
  Taurus is an infostealer first seen in June 2020.
  trojan stealer taurus
- Taurus Stealer Payload
- Deletes itself
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses 2FA software files, possible credential harvesting
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

taurusdiscoveryspywarestealertrojan

behavioral2

taurusdiscoveryspywarestealertrojan

© 2018-2025

Terms | Privacy