TajMahal, a previously unknown cyberespionage platform featuring roughly 80 different malicious modules and active since at least 2013, was discovered by Kaspersky Lab’s research team during late 2018. The advanced persistent threat (APT) framework is not yet connected to any hacking groups. The framework is a multi-stage attack framework which comes with two malicious packages, self-named as Tokyo and Yokohama, dropped one after the other on the target’s computer. All the systems where the researchers found the. researchers found. the. systems were infected by both Tokyo and Tokyo, which hints at both. them remaining functional on the compromised machines.
Source: https://www.bleepingcomputer.com/news/security/new-tajmahal-cyberespionage-kit-includes-80-malicious-modules/