aurora | 33fc61e81efa609df51277aef261623bb291e2dd5359362d50070f7a441df0ad | Triage

Submit
Reports

Overview

overview

Static

static

Aurora.exe

windows10-2004-x64

Sharing

General

Target

Aurora.exe
Size

25.2MB
Sample

230419-xhe7tsef4z
MD5

1504c863a05885816d2c8874137ae7a7
SHA1

5b16d440a7e9b5887886549f016f252900b5c0ac
SHA256

33fc61e81efa609df51277aef261623bb291e2dd5359362d50070f7a441df0ad
SHA512

055d2650ac996443130c05a742bcaabc576dbde29cc21ea956f66132f7e6da8a5771beb9cd51ff2384b2230ebe68990b35d8b14611613db2b8d2764846a487f9
SSDEEP

196608:olxc7zJltMVP1nQf6CmuZdgh7vq5esz6xSle:WqzFANQf6CmuEh7vqvz6xSs

Score

10^/10

aurora shurk infostealer stealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

Aurora.exe

Resource

win10v2004-20230220-es

aurora shurk infostealer stealer

windows10-2004-x64

4 signatures

600 seconds

Malware Config

Extracted

Family

aurora

C2

:8081

Targets

- Target
  
  Aurora.exe
- Size
  
  25.2MB
- MD5
  
  1504c863a05885816d2c8874137ae7a7
- SHA1
  
  5b16d440a7e9b5887886549f016f252900b5c0ac
- SHA256
  
  33fc61e81efa609df51277aef261623bb291e2dd5359362d50070f7a441df0ad
- SHA512
  
  055d2650ac996443130c05a742bcaabc576dbde29cc21ea956f66132f7e6da8a5771beb9cd51ff2384b2230ebe68990b35d8b14611613db2b8d2764846a487f9
- SSDEEP
  
  196608:olxc7zJltMVP1nQf6CmuZdgh7vq5esz6xSle:WqzFANQf6CmuEh7vqvz6xSs
Score

10^/10

aurora shurk infostealer stealer
- Aurora
  Aurora is a crypto wallet stealer written in Golang.
  stealer aurora
- Shurk
  Shurk is an infostealer, written in C++ which appeared in 2021.
  infostealer shurk
- Shurk Stealer payload
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

aurorashurkinfostealerstealer

© 2018-2024

Terms | Privacy