expiro | de540af4121c59bc15045af83780e30bf882a2510adbce639559d59e1f8c674e | Triage

Submit
Reports

Overview

overview

Static

static

3

402867947f...18.exe

windows7-x64

402867947f...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

402867947fcea87895c8d4c1bab825e0_JaffaCakes118
Size

417KB
Sample

240713-evlk9sxfqd
MD5

402867947fcea87895c8d4c1bab825e0
SHA1

94188f79c14565900302363867ee89736eba86e5
SHA256

de540af4121c59bc15045af83780e30bf882a2510adbce639559d59e1f8c674e
SHA512

519a71dd1ff885152631a0713898b556b21e461a5b2b946c29678647997280f7f03f9c02f56149e81d1af3bee3f7cec157be9a5145652274bdf348a545b79a51
SSDEEP

6144:mSpwTxz8fEYga22UHHXyDArvBIM6zOz3ONgEox946lzmEZYS5+oj9COdbeOut8MQ:J+lAfEYAtHCDArvxeOOjo46hjYJQ0mN

Score

10^/10

expiro backdoor

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

402867947fcea87895c8d4c1bab825e0_JaffaCakes118.exe

Resource

win7-20240705-en

expiro backdoor

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

402867947fcea87895c8d4c1bab825e0_JaffaCakes118.exe

Resource

win10v2004-20240709-en

expiro backdoor

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  402867947fcea87895c8d4c1bab825e0_JaffaCakes118
- Size
  
  417KB
- MD5
  
  402867947fcea87895c8d4c1bab825e0
- SHA1
  
  94188f79c14565900302363867ee89736eba86e5
- SHA256
  
  de540af4121c59bc15045af83780e30bf882a2510adbce639559d59e1f8c674e
- SHA512
  
  519a71dd1ff885152631a0713898b556b21e461a5b2b946c29678647997280f7f03f9c02f56149e81d1af3bee3f7cec157be9a5145652274bdf348a545b79a51
- SSDEEP
  
  6144:mSpwTxz8fEYga22UHHXyDArvBIM6zOz3ONgEox946lzmEZYS5+oj9COdbeOut8MQ:J+lAfEYAtHCDArvxeOOjo46hjYJQ0mN
Score

10^/10

expiro backdoor
- Expiro, m0yv
  Expiro aka m0yv is a multi-functional backdoor written in C++.
  backdoor expiro
- Expiro payload
  backdoor
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy