aurora | ea6f6409720d4d5e3aa23f624327fe9cd32d0a8e61605e39886edefb43e650b3 | Triage

Sharing

General

Target

20241001271a8e81e269722652587ac99365b813poetratsnatch
Size

4.5MB
Sample

241001-tkk93syanm
MD5

271a8e81e269722652587ac99365b813
SHA1

bca600c09476c7bf7b9f95c4473f475cf7f22199
SHA256

ea6f6409720d4d5e3aa23f624327fe9cd32d0a8e61605e39886edefb43e650b3
SHA512

7d0c1afe5dedd6f99d76b701617b276f0686fc811c6a49262daac78e7c4a6a8a0a883840d369eb3779f690d0c24365ff2216bad3b3a87200e8a244bc9aa09b50
SSDEEP

49152:pGq16201YVaXPhSjZNTpGktKDJ3MS1cM+CbJtz8p0ma8tsJUtAl02F1CNt:pL16F1YVSEjmvJtNJUDN

Score

10^/10

aurora discovery

Malware Config

Extracted

Family

aurora

C2

95.217.193.56:8081

Targets

- Target
  
  20241001271a8e81e269722652587ac99365b813poetratsnatch
- Size
  
  4.5MB
- MD5
  
  271a8e81e269722652587ac99365b813
- SHA1
  
  bca600c09476c7bf7b9f95c4473f475cf7f22199
- SHA256
  
  ea6f6409720d4d5e3aa23f624327fe9cd32d0a8e61605e39886edefb43e650b3
- SHA512
  
  7d0c1afe5dedd6f99d76b701617b276f0686fc811c6a49262daac78e7c4a6a8a0a883840d369eb3779f690d0c24365ff2216bad3b3a87200e8a244bc9aa09b50
- SSDEEP
  
  49152:pGq16201YVaXPhSjZNTpGktKDJ3MS1cM+CbJtz8p0ma8tsJUtAl02F1CNt:pL16F1YVSEjmvJtNJUDN
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2