Intel Name: Pubload malware from stately taurus
Date of Scan: February 26, 2025
Impact: High
Summary: Stately Taurus is our designation for a China-based cyberespionage group first identified in 2017, with potential activity dating back to 2012. Recently, it has targeted government and military entities in Myanmar, Nepal, the Philippines, and Sri Lanka. A file disguised as CCleanerReactivator has been linked to PubLoad malware infections. We continue monitoring this group’s infrastructure and malware.
