{"id":3420,"date":"2021-07-30T01:28:44","date_gmt":"2021-07-30T06:28:44","guid":{"rendered":"https:\/\/truxgoservers.com\/blog\/?p=3420"},"modified":"2021-08-07T12:04:03","modified_gmt":"2021-08-07T17:04:03","slug":"taurus-loader-a-threat-with-constant-activity","status":"publish","type":"post","link":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/","title":{"rendered":"Taurus Loader threat with constant activity"},"content":{"rendered":"\n

Taurus Loader has been around for over a year and continues to be actively updated and distributed by its developers. As the name suggests, this Trojan Loader is designed to implement additional malware on the systems it compromises. Furthermore, criminals work with a wide range of payloads and the techniques they use to deceive and gain access to users are constantly evolving. Currently, a significant part of the distribution of Taurus Loader occurs through fake downloads and cracked software so users often access fake and malicious activators and cracks through torrents, specialized hacking websites or even the results Google search.<\/p>\n\n\n\n

The malware appears to have been developed by Alexuiop1337 better known as the Predator actor The Thief, as he was promoted on his Telegram channel and underground Russian forums, although they claimed that he has no connection to Taurus. Taurus Stealer is advertised by the threat actor “Taurus Seller”, who has a presence on a variety of underground Russian forums where this threat is primarily sold.<\/p>\n\n\n\n

Also something not to be taken lightly is that Taurus uses AutoIt to perform various evasion techniques, and if a machine is deemed “safe”, a payload will be decrypted into memory and executed. Rather than implementing their decryption algorithm in AutoIt, malware developers have chosen to write an assembly implementation of their chosen stream cipher, RC4.<\/p>\n\n\n\n

Related reads:
JSSLoader \u2013 A Threat That Comes Back Improved<\/a>
ZLoader \u2013 A Dangerous malware Distributor<\/a>
BazaLoader threat posing as legitimate sites<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Taurus Loader has been around for over a year and continues to be actively updated and distributed by its developers. As the name suggests, this Trojan Loader is designed to implement additional malware on the systems it compromises. Furthermore, criminals work with a wide range of payloads and the techniques they use to deceive and […]<\/p>\n","protected":false},"author":1,"featured_media":3421,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10],"tags":[36],"class_list":["post-3420","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-cybersecurity"],"yoast_head":"\nTaurus Loader threat with constant activity - Truxgo Server Blog<\/title>\n<meta name=\"description\" content=\"Some may become known Taurus Loader and this threat has been active for a long time and we are just going to see this.......\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/\" \/>\n<meta property=\"og:locale\" content=\"es_MX\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Taurus Loader threat with constant activity - Truxgo Server Blog\" \/>\n<meta property=\"og:description\" content=\"Some may become known Taurus Loader and this threat has been active for a long time and we are just going to see this.......\" \/>\n<meta property=\"og:url\" content=\"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/\" \/>\n<meta property=\"og:site_name\" content=\"Truxgo Server Blog\" \/>\n<meta property=\"article:published_time\" content=\"2021-07-30T06:28:44+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-08-07T17:04:03+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/truxgoservers.com\/blog\/wp-content\/uploads\/2021\/07\/new-3.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1140\" \/>\n\t<meta property=\"og:image:height\" content=\"814\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Truxgo\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Escrito por\" \/>\n\t<meta name=\"twitter:data1\" content=\"Truxgo\" \/>\n\t<meta name=\"twitter:label2\" content=\"Tiempo de lectura\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutos\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/taurus-loader-a-threat-with-constant-activity\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/taurus-loader-a-threat-with-constant-activity\\\/\"},\"author\":{\"name\":\"Truxgo\",\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/#\\\/schema\\\/person\\\/8b409c26449db6aa09724b45331e333e\"},\"headline\":\"Taurus Loader threat with constant activity\",\"datePublished\":\"2021-07-30T06:28:44+00:00\",\"dateModified\":\"2021-08-07T17:04:03+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/taurus-loader-a-threat-with-constant-activity\\\/\"},\"wordCount\":248,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/taurus-loader-a-threat-with-constant-activity\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/07\\\/new-3.jpg\",\"keywords\":[\"Cybersecurity\"],\"articleSection\":[\"Cybersecurity\"],\"inLanguage\":\"es\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/taurus-loader-a-threat-with-constant-activity\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/taurus-loader-a-threat-with-constant-activity\\\/\",\"url\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/taurus-loader-a-threat-with-constant-activity\\\/\",\"name\":\"Taurus Loader threat with constant activity - Truxgo Server Blog\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/taurus-loader-a-threat-with-constant-activity\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/taurus-loader-a-threat-with-constant-activity\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/07\\\/new-3.jpg\",\"datePublished\":\"2021-07-30T06:28:44+00:00\",\"dateModified\":\"2021-08-07T17:04:03+00:00\",\"description\":\"Some may become known Taurus Loader and this threat has been active for a long time and we are just going to see this.......\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/taurus-loader-a-threat-with-constant-activity\\\/#breadcrumb\"},\"inLanguage\":\"es\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/taurus-loader-a-threat-with-constant-activity\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"es\",\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/taurus-loader-a-threat-with-constant-activity\\\/#primaryimage\",\"url\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/07\\\/new-3.jpg\",\"contentUrl\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/07\\\/new-3.jpg\",\"width\":1140,\"height\":814},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/taurus-loader-a-threat-with-constant-activity\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Taurus Loader threat with constant activity\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/\",\"name\":\"Truxgo Server Blog\",\"description\":\"Cloud Server and Hosting Tutorials.\",\"publisher\":{\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"es\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/#organization\",\"name\":\"Truxgo Server Blog\",\"url\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"es\",\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/08\\\/cropped-truxgo-logo-blanco.png\",\"contentUrl\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/08\\\/cropped-truxgo-logo-blanco.png\",\"width\":1250,\"height\":278,\"caption\":\"Truxgo Server Blog\"},\"image\":{\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/#\\\/schema\\\/person\\\/8b409c26449db6aa09724b45331e333e\",\"name\":\"Truxgo\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"es\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/52691a61c58e68677ed4860007c1bb03b14eabe7350747ab3fad3e17825b4b96?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/52691a61c58e68677ed4860007c1bb03b14eabe7350747ab3fad3e17825b4b96?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/52691a61c58e68677ed4860007c1bb03b14eabe7350747ab3fad3e17825b4b96?s=96&d=mm&r=g\",\"caption\":\"Truxgo\"},\"sameAs\":[\"https:\\\/\\\/truxgoservers.com\\\/blog\"],\"url\":\"https:\\\/\\\/truxgoservers.com\\\/blog\\\/author\\\/truxgo\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Taurus Loader threat with constant activity - Truxgo Server Blog","description":"Some may become known Taurus Loader and this threat has been active for a long time and we are just going to see this.......","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/","og_locale":"es_MX","og_type":"article","og_title":"Taurus Loader threat with constant activity - Truxgo Server Blog","og_description":"Some may become known Taurus Loader and this threat has been active for a long time and we are just going to see this.......","og_url":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/","og_site_name":"Truxgo Server Blog","article_published_time":"2021-07-30T06:28:44+00:00","article_modified_time":"2021-08-07T17:04:03+00:00","og_image":[{"width":1140,"height":814,"url":"https:\/\/truxgoservers.com\/blog\/wp-content\/uploads\/2021\/07\/new-3.jpg","type":"image\/jpeg"}],"author":"Truxgo","twitter_card":"summary_large_image","twitter_misc":{"Escrito por":"Truxgo","Tiempo de lectura":"2 minutos"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/#article","isPartOf":{"@id":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/"},"author":{"name":"Truxgo","@id":"https:\/\/truxgoservers.com\/blog\/#\/schema\/person\/8b409c26449db6aa09724b45331e333e"},"headline":"Taurus Loader threat with constant activity","datePublished":"2021-07-30T06:28:44+00:00","dateModified":"2021-08-07T17:04:03+00:00","mainEntityOfPage":{"@id":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/"},"wordCount":248,"commentCount":0,"publisher":{"@id":"https:\/\/truxgoservers.com\/blog\/#organization"},"image":{"@id":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/#primaryimage"},"thumbnailUrl":"https:\/\/truxgoservers.com\/blog\/wp-content\/uploads\/2021\/07\/new-3.jpg","keywords":["Cybersecurity"],"articleSection":["Cybersecurity"],"inLanguage":"es","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/","url":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/","name":"Taurus Loader threat with constant activity - Truxgo Server Blog","isPartOf":{"@id":"https:\/\/truxgoservers.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/#primaryimage"},"image":{"@id":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/#primaryimage"},"thumbnailUrl":"https:\/\/truxgoservers.com\/blog\/wp-content\/uploads\/2021\/07\/new-3.jpg","datePublished":"2021-07-30T06:28:44+00:00","dateModified":"2021-08-07T17:04:03+00:00","description":"Some may become known Taurus Loader and this threat has been active for a long time and we are just going to see this.......","breadcrumb":{"@id":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/#breadcrumb"},"inLanguage":"es","potentialAction":[{"@type":"ReadAction","target":["https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/"]}]},{"@type":"ImageObject","inLanguage":"es","@id":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/#primaryimage","url":"https:\/\/truxgoservers.com\/blog\/wp-content\/uploads\/2021\/07\/new-3.jpg","contentUrl":"https:\/\/truxgoservers.com\/blog\/wp-content\/uploads\/2021\/07\/new-3.jpg","width":1140,"height":814},{"@type":"BreadcrumbList","@id":"https:\/\/truxgoservers.com\/blog\/taurus-loader-a-threat-with-constant-activity\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/truxgoservers.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Taurus Loader threat with constant activity"}]},{"@type":"WebSite","@id":"https:\/\/truxgoservers.com\/blog\/#website","url":"https:\/\/truxgoservers.com\/blog\/","name":"Truxgo Server Blog","description":"Cloud Server and Hosting Tutorials.","publisher":{"@id":"https:\/\/truxgoservers.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/truxgoservers.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"es"},{"@type":"Organization","@id":"https:\/\/truxgoservers.com\/blog\/#organization","name":"Truxgo Server Blog","url":"https:\/\/truxgoservers.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"es","@id":"https:\/\/truxgoservers.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/truxgoservers.com\/blog\/wp-content\/uploads\/2020\/08\/cropped-truxgo-logo-blanco.png","contentUrl":"https:\/\/truxgoservers.com\/blog\/wp-content\/uploads\/2020\/08\/cropped-truxgo-logo-blanco.png","width":1250,"height":278,"caption":"Truxgo Server Blog"},"image":{"@id":"https:\/\/truxgoservers.com\/blog\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/truxgoservers.com\/blog\/#\/schema\/person\/8b409c26449db6aa09724b45331e333e","name":"Truxgo","image":{"@type":"ImageObject","inLanguage":"es","@id":"https:\/\/secure.gravatar.com\/avatar\/52691a61c58e68677ed4860007c1bb03b14eabe7350747ab3fad3e17825b4b96?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/52691a61c58e68677ed4860007c1bb03b14eabe7350747ab3fad3e17825b4b96?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/52691a61c58e68677ed4860007c1bb03b14eabe7350747ab3fad3e17825b4b96?s=96&d=mm&r=g","caption":"Truxgo"},"sameAs":["https:\/\/truxgoservers.com\/blog"],"url":"https:\/\/truxgoservers.com\/blog\/author\/truxgo\/"}]}},"_links":{"self":[{"href":"https:\/\/truxgoservers.com\/blog\/wp-json\/wp\/v2\/posts\/3420","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/truxgoservers.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/truxgoservers.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/truxgoservers.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/truxgoservers.com\/blog\/wp-json\/wp\/v2\/comments?post=3420"}],"version-history":[{"count":2,"href":"https:\/\/truxgoservers.com\/blog\/wp-json\/wp\/v2\/posts\/3420\/revisions"}],"predecessor-version":[{"id":3496,"href":"https:\/\/truxgoservers.com\/blog\/wp-json\/wp\/v2\/posts\/3420\/revisions\/3496"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/truxgoservers.com\/blog\/wp-json\/wp\/v2\/media\/3421"}],"wp:attachment":[{"href":"https:\/\/truxgoservers.com\/blog\/wp-json\/wp\/v2\/media?parent=3420"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/truxgoservers.com\/blog\/wp-json\/wp\/v2\/categories?post=3420"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/truxgoservers.com\/blog\/wp-json\/wp\/v2\/tags?post=3420"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}