New: Threat Exposure Validation Impact Report 2025
Learn More
Join our Summer Webinar Series on Threat Exposure Validation
Register Now
Come meet us at Black Hat USA 2025 | Booth 1640
Book a Meeting

APT15 Targets Multiple Sectors With Turian Backdoor

January 29, 2023

APT15, also known as Playful Taurus, is an advanced persistent threat (APT) that conducts a variety of cyber operations across multiple regions around the world. The threat actor was discovered targeting the Iranian telecommunications and diplomatic sectors with the Turian backdoor. The backdoor is packed with VMProtect to obfuscate the Application Programming Interface (API), thus making analysis difficult. The malware contains a wide range of capabilities from spawning reverse shells to executing commands from the command-and-control server.