aurora | ebd1368979b5adb9586ce512b63876985a497e1727ffbd54732cd42eef992b81 | Triage

Sharing

General

Target

aurora.exe
Size

10.0MB
Sample

240830-lpezvsyeqj
MD5

83fbded097edeeeec35ebb02e6f58efb
SHA1

0b2ee0d31fceb7108c0fdbf160ecbc7a0d3f74b1
SHA256

ebd1368979b5adb9586ce512b63876985a497e1727ffbd54732cd42eef992b81
SHA512

a70f52eebca88019ba06c2b22ac0d0119d23a1b7b358c6132d617eb444a76eb299fa2c211c1b83d4d32377aaf62a1e56e90f5c36a0e76456d96a724739a70529
SSDEEP

98304:TOcegIdwqxPLEx6AfWOk3FeCN5RLVzS2pTTDrx9mhgEUwvR:TefGqawAeOk38CrRdvmhtU

Score

10^/10

aurora discovery

Malware Config

Extracted

Family

aurora

C2

185.106.93.237:56763

Targets

- Target
  
  aurora.exe
- Size
  
  10.0MB
- MD5
  
  83fbded097edeeeec35ebb02e6f58efb
- SHA1
  
  0b2ee0d31fceb7108c0fdbf160ecbc7a0d3f74b1
- SHA256
  
  ebd1368979b5adb9586ce512b63876985a497e1727ffbd54732cd42eef992b81
- SHA512
  
  a70f52eebca88019ba06c2b22ac0d0119d23a1b7b358c6132d617eb444a76eb299fa2c211c1b83d4d32377aaf62a1e56e90f5c36a0e76456d96a724739a70529
- SSDEEP
  
  98304:TOcegIdwqxPLEx6AfWOk3FeCN5RLVzS2pTTDrx9mhgEUwvR:TefGqawAeOk38CrRdvmhtU
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2