expiro | 5517a49b6c81ef341a7183f89cd153c6596c52a66bb461d4e3a1cd64c25a5d20 | Triage

Submit
Reports

Overview

overview

Static

static

3

5517a49b6c...20.exe

windows7-x64

5517a49b6c...20.exe

windows10-2004-x64

Sharing

General

Target

5517a49b6c81ef341a7183f89cd153c6596c52a66bb461d4e3a1cd64c25a5d20.exe
Size

653KB
Sample

241218-bcat9svqgx
MD5

0355c0382257e7dc9500c5dda29e60f7
SHA1

85f44480f60602325245b31cf2a1098f1ed7fc5f
SHA256

5517a49b6c81ef341a7183f89cd153c6596c52a66bb461d4e3a1cd64c25a5d20
SHA512

00011c7e6f85b91bc0958b5e4106cc970091541694a3c3d3a47c1ce437840a3167adf355e7b8d45a9b47119c20667bebc86fab748a9f6ba7c73052289010eb19
SSDEEP

12288:0Mf7R8Bzt+MFdfeD+tG+/gCYxP+8LDYpl2St1Slantml/Oh:027R8Bzt+yfhJ/gCYLQrShI

Score

10^/10

expiro backdoor discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5517a49b6c81ef341a7183f89cd153c6596c52a66bb461d4e3a1cd64c25a5d20.exe

Resource

win7-20241010-en

expiro backdoor discovery

windows7-x64

4 signatures

120 seconds

Behavioral task

behavioral2

Sample

5517a49b6c81ef341a7183f89cd153c6596c52a66bb461d4e3a1cd64c25a5d20.exe

Resource

win10v2004-20241007-en

expiro backdoor discovery

windows10-2004-x64

4 signatures

120 seconds

Malware Config

Targets

- Target
  
  5517a49b6c81ef341a7183f89cd153c6596c52a66bb461d4e3a1cd64c25a5d20.exe
- Size
  
  653KB
- MD5
  
  0355c0382257e7dc9500c5dda29e60f7
- SHA1
  
  85f44480f60602325245b31cf2a1098f1ed7fc5f
- SHA256
  
  5517a49b6c81ef341a7183f89cd153c6596c52a66bb461d4e3a1cd64c25a5d20
- SHA512
  
  00011c7e6f85b91bc0958b5e4106cc970091541694a3c3d3a47c1ce437840a3167adf355e7b8d45a9b47119c20667bebc86fab748a9f6ba7c73052289010eb19
- SSDEEP
  
  12288:0Mf7R8Bzt+MFdfeD+tG+/gCYxP+8LDYpl2St1Slantml/Oh:027R8Bzt+yfhJ/gCYLQrShI
Score

10^/10

expiro backdoor discovery
- Expiro family
  expiro
- Expiro, m0yv
  Expiro aka m0yv is a multi-functional backdoor written in C++.
  backdoor expiro
- Expiro payload
  backdoor
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

expirobackdoordiscovery

behavioral2

expirobackdoordiscovery

© 2018-2025

Terms | Privacy