AuroraStealer

Aurora Stealer is a Go-based infostealer on the Russian cybercrime market from 2022. Browser, crypto wallet, SSH/FTP player. Telegram C2.

Threat Profile
Type Infostealer
Programming LanguageGo (Golang)
C2 ProtocolHTTP
First Seen2022
Targets Kuresel
Purpose / Capabilities
  • Credential + Crypto Theft
No C2 servers have been identified for this family yet.

Research Reports (2)

High

Aurora Stealer -- .text 60KB .NET, CreateDecryptor AES, BTC 12RSMbXfAW4c, Base64 Key | Yüksek

Aurora Stealer 60KB .NET. CreateDecryptor AES. BTC 12RSMbXfAW4c. Base64 şifreli config.

Read Report →
High

Aurora Stealer — Go Tabanli MaaS Infostealer, Agir Paketli RAR Paketi, C4Client Dropper | Yuksek

Aurora Stealer Go tabanli MaaS infostealer. C4Client.rar ile dagitilmis, agir sekilde paketli, statik analizde cleartext C2 bulunamadi.

Read Report →