taurus | 7f3c69c97fcc1374540adaf6eba5ad6159faa11d57a64d92784f84e4a2bf6de7 | Triage

Submit
Reports

Overview

overview

Static

static

7f3c69c97f...e7.exe

windows7-x64

7f3c69c97f...e7.exe

windows10-2004-x64

Sharing

General

Target

7f3c69c97fcc1374540adaf6eba5ad6159faa11d57a64d92784f84e4a2bf6de7
Size

925KB
Sample

230129-y6qh5sde31
MD5

3589b2a4fe7f455f43e03c76fafc9c98
SHA1

a814ea0a7230ee5fb40a5aa18d3f16093f73b55f
SHA256

7f3c69c97fcc1374540adaf6eba5ad6159faa11d57a64d92784f84e4a2bf6de7
SHA512

1f92efe9c905d30e9859ac26212c79db2f65081efbc1070e9928bcca0df99b1779a1628633cc727843099aff69d10cd2b5c576c9e2f6f9c42a11ac1c0cddd1b8
SSDEEP

12288:W+DhHLSmf6G/xy67pr7qvGVMkfzSXEvxPcLJPpQf5:DrXf9YwpUkfzSUvxPcVxC5

Score

10^/10

taurus spyware stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

7f3c69c97fcc1374540adaf6eba5ad6159faa11d57a64d92784f84e4a2bf6de7.exe

Resource

win7-20220812-en

taurus spyware stealer trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

7f3c69c97fcc1374540adaf6eba5ad6159faa11d57a64d92784f84e4a2bf6de7.exe

Resource

win10v2004-20221111-en

taurus spyware stealer trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  7f3c69c97fcc1374540adaf6eba5ad6159faa11d57a64d92784f84e4a2bf6de7
- Size
  
  925KB
- MD5
  
  3589b2a4fe7f455f43e03c76fafc9c98
- SHA1
  
  a814ea0a7230ee5fb40a5aa18d3f16093f73b55f
- SHA256
  
  7f3c69c97fcc1374540adaf6eba5ad6159faa11d57a64d92784f84e4a2bf6de7
- SHA512
  
  1f92efe9c905d30e9859ac26212c79db2f65081efbc1070e9928bcca0df99b1779a1628633cc727843099aff69d10cd2b5c576c9e2f6f9c42a11ac1c0cddd1b8
- SSDEEP
  
  12288:W+DhHLSmf6G/xy67pr7qvGVMkfzSXEvxPcLJPpQf5:DrXf9YwpUkfzSUvxPcVxC5
Score

10^/10

taurus spyware stealer trojan
- Taurus Stealer
  Taurus is an infostealer first seen in June 2020.
  trojan stealer taurus
- Taurus Stealer payload
- Accesses 2FA software files, possible credential harvesting
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

taurusspywarestealertrojan

behavioral2

taurusspywarestealertrojan

© 2018-2024

Terms | Privacy