aurora | 007400d86d6f27c3b62b01404cd0bcfa61843580039c7c6a4888e0dff25ddcae | Triage

Sharing

General

Target

007400d86d6f27c3b62b01404cd0bcfa61843580039c7c6a4888e0dff25ddcae
Size

4.7MB
Sample

230223-n7bfhafg37
MD5

b75490a7e9348c6d98c5cf62b94f85a0
SHA1

971e659eeebc978ed9b45381807b4635ca08cbf7
SHA256

007400d86d6f27c3b62b01404cd0bcfa61843580039c7c6a4888e0dff25ddcae
SHA512

5568403f9a425d48d8f47eee3cab37705572de1178855d43e6cc324047c05809b2c102b3e4d54cd6acc08a22ec4f0fbd634d549e83568f5fee3ba65ec43a6200
SSDEEP

98304:06RpKO+6PbFmS3VjVEOeTtJaAbLECnrZXJT7:0SbFmS3VjVEOeTtJHbdnrz7

Score

10^/10

aurora stealer

Malware Config

Extracted

Family

aurora

C2

217.195.155.154:8081

Targets

- Target
  
  007400d86d6f27c3b62b01404cd0bcfa61843580039c7c6a4888e0dff25ddcae
- Size
  
  4.7MB
- MD5
  
  b75490a7e9348c6d98c5cf62b94f85a0
- SHA1
  
  971e659eeebc978ed9b45381807b4635ca08cbf7
- SHA256
  
  007400d86d6f27c3b62b01404cd0bcfa61843580039c7c6a4888e0dff25ddcae
- SHA512
  
  5568403f9a425d48d8f47eee3cab37705572de1178855d43e6cc324047c05809b2c102b3e4d54cd6acc08a22ec4f0fbd634d549e83568f5fee3ba65ec43a6200
- SSDEEP
  
  98304:06RpKO+6PbFmS3VjVEOeTtJaAbLECnrZXJT7:0SbFmS3VjVEOeTtJHbdnrz7
Score

10^/10

aurora stealer
- Aurora
  Aurora is a crypto wallet stealer written in Golang.
  stealer aurora
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2