aurora
Ransomware group profile
10Victims
Description
No description available for this group.
Threat Level & Status Breakdown
For aurora · Based on incidents in selected period
1.5threat level
Aggressiveness2.5/ 10
Lethality0/ 10
Criticality2.2/ 10
Status Breakdown
Negotiating10.0%1
Claimed90.0%9
First seenApr 2026
Last seenMay 2026
Avg ransom—
Payment rate—
Recent activity
Monthly attack count for aurora in the selected period
10Total attacks
9peak in Apr
5avg / month
↓ 8 vs first month
No intelligence data for this group.
TTPs & Attack Vectors
Tools, initial access, and MITRE ATT&CK techniques for aurora
Credential Access
T1003
OS Credential Dumping
T1110
Brute Force
Defense Evasion
T1562
Impair Defenses
T1036
Masquerading
T1497
Virtualization/Sandbox Evasion
Execution
T1059
Command and Scripting Interpreter
Impact
T1486
Data Encrypted for Impact
T1490
Inhibit System Recovery
Lateral Movement
T1021
Remote Services
T1021.001
Remote Desktop Protocol
Persistence
T1078
Valid Accounts
T1547
Boot or Logon Autostart Execution
Victims(10)
| Company | Domain | Country | Industry | Status | Discovered | |
|---|---|---|---|---|---|---|
| Avanti Windows & Doors | — | US United States | Manufacturing | Negotiating | 22 days ago | |
| Advanta Genetics LLC | — | US United States | Healthcare | Claimed | about 1 month ago | |
| Baresque Group | — | AU Australia | Manufacturing | Claimed | about 1 month ago | |
| Cheval Blanc Randheli | — | FR France | Hospitality | Claimed | about 1 month ago | |
| Law Offices of Michael A. Freedman, P.A. | maflaw.com | US United States | Professional Services | Claimed | about 1 month ago | |
| Atlas Metal Industries Inc | — | US United States | Manufacturing | Claimed | about 1 month ago | |
| Costa Solutions, LLC | — | US United States | Transportation | Claimed | about 1 month ago | |
| Bayou Title, Inc. | — | US United States | Financial Services | Claimed | about 1 month ago | |
| Startec Group of Companies | — | PH Philippines | Professional Services | Claimed | 22 days ago | |
| NorthWest Handling Systems | — | CA Canada | Transportation | Claimed | 22 days ago |
Affected countries(5)
Countries where this group has been reported to target or leak victims.