expiro | 6af162a2c9438551176cc1c69fb96fc72b9808a7215da42685d561dba18c2c48 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

0aa2861c25...c3.exe

windows10-2004-x64

Sharing

General

Target

45c0f4a73d21686be4a28c0688d6cf4b.zip
Size

300KB
Sample

240901-y9ntqa1fna
MD5

f6b80fb45c54299db1864d33f8efbf88
SHA1

2d1c74a0831a312b4ab6e29cfd296e75ca0f3dd7
SHA256

6af162a2c9438551176cc1c69fb96fc72b9808a7215da42685d561dba18c2c48
SHA512

4c606f9319003f7cc281aa9f59bb1fbb16e4306d995aff64e60f47730b8e394580d737c8353410801bbbb2556b0cb5637bb5af6f3b42969ce64e4a29a25dfbee
SSDEEP

6144:KRq6Tau1T2dLiVZx/HBayDUZivGvYeQ2xb6dqdNld8x:KRqX22q/EgoEmYeBxb6Ud8x

Score

10^/10

expiro backdoor

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0aa2861c2530c5ec2e40c7c25f37a3252355ac26dcd468043c311e62227e63c3.exe

Resource

win10v2004-20240802-en

expiro backdoor

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  0aa2861c2530c5ec2e40c7c25f37a3252355ac26dcd468043c311e62227e63c3
- Size
  
  432KB
- MD5
  
  45c0f4a73d21686be4a28c0688d6cf4b
- SHA1
  
  9b7930c4ab6e8d2a3f0879d3cd62a587eaf0a4a0
- SHA256
  
  0aa2861c2530c5ec2e40c7c25f37a3252355ac26dcd468043c311e62227e63c3
- SHA512
  
  25ad604f385c67ff11ae8fc41cf2f280cdaf5f7ee83e1bf98fa74370e068e298411693baf7365268b2e756c6e54c7a5e4a48997dbb34ac4cb76934979facfbeb
- SSDEEP
  
  12288:XUCmZiC39hb/cYwiyehDphwDpZtFidNNUYg:ZC3vcYnNhphapZtMdNNP
Score

10^/10

expiro backdoor
- Expiro, m0yv
  Expiro aka m0yv is a multi-functional backdoor written in C++.
  backdoor expiro
- Expiro payload
  backdoor
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy