Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Aurora

| Active

Aurora is a ransomware group associated with a multi-purpose Go-based malware distributed by multiple criminal teams from mid-2022, also sold as an infostealer/botnet under the same name on underground forums.

Victims
10
 
First Discovered
2026-04-29
victim
Last Discovered
2026-05-12
victim
Inactive Since
7
days
Avg Delay
11.7
days
Infostealer
10.0%
victims with domain
Countries
5
hit
View Victims on World Map View Group Statistics
Attack Velocity — Last 12 months
-89% vs last month
Known Locations (1)
Favicon Title Type Available Last Visit Server Info FQDN
favicon Aur0ra Blog Yes 2026-05-19T16:38:58 NGINX nginx u6lieui2dakbctcjea2bz4r4q32r7t36nwljovqbv7mxs6o2smgxixid.onion
Target
Top 5 Activity Sectors
  • Business Services 3
  • Manufacturing 2
  • Transportation/Logistics 1
  • Healthcare 1
  • Consumer Services 1
Top 5 Countries
  • US flag United States 5
  • CA flag Canada 2
  • PH flag Philippines 1
  • GB flag United Kingdom 1
  • MV flag Maldives 1
Heatmap
Ransom Notes (1)
YARA Rules (1)
Victims (10)
Logo
Avanti Windows & Doors US
Aurora
Discovered: 2026-05-12 (7d ago)
Avanti Windows & Doors — a vinyl window manufacturer headquartered in El Mirage, Arizona, with regio…
Logo
Startec Group of Companies PH
Aurora
Discovered: 2026-05-12 (7d ago)  ·  Attack est.: 2026-04-23
Startec Group of Companies, a privately held Calgary-based industrial OEM founded in 1976 by Joe Caw…
Logo
NorthWest Handling Systems CA
Aurora
Discovered: 2026-05-12 (7d ago)  ·  Attack est.: 2026-04-23
[warehouse] NorthWest Handling Systems — a 55-year-old forklift and warehouse equipment company head…
Logo
Advanta Genetics LLC US
Aurora
Discovered: 2026-04-29 (19d ago)  ·  Attack est.: 2026-04-17
[health] Advanta Genetics LLC — a respected CLIA/CAP-accredited clinical toxicology and molecular di…
Logo
Baresque Group GB
Aurora
Discovered: 2026-04-29 (19d ago)  ·  Attack est.: 2026-04-22
[design] Baresque Group — a respected commercial-interiors company headquartered in Perth, Australia…
Logo
Cheval Blanc Randheli MV
Aurora
Discovered: 2026-04-29 (19d ago)  ·  Attack est.: 2026-04-22
[lvmh] Guest Passport Scans — 75,855 Files, 10 Years The single largest data category: 75,855 passpo…
Logo
Law Offices of Michael A. Freedman, P.A. (maflaw.com) US
Aurora
Discovered: 2026-04-29 (19d ago)  ·  Attack est.: 2026-04-23
[law] Law Offices of Michael A. Freedman, P.A. (maflaw.com). The exfiltrated corpus is 579 GB used /…
Logo
Atlas Metal Industries Inc CA
Aurora
Discovered: 2026-04-29 (19d ago)
[food, metal] Atlas Metal Industries Inc. — a privately held commercial-foodservice-equipment manufa…
Logo
Costa Solutions, LLC US
Aurora
Discovered: 2026-04-29 (19d ago)
[warehouse] Costa Solutions, LLC — a privately held managed-labor and warehousing company headquarte…
Logo
Bayou Title, Inc. US
Aurora
Discovered: 2026-04-29 (19d ago)
[insurance] Bayou Title, Inc. — the largest title insurance agent and closing/settlement services pr…