expiro | 7a7a461eb2717b429008f8c75abb075de4355ef677dbe4bdef5830653d30c5b5 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

5

7a7a461eb2...b5.exe

windows7-x64

7a7a461eb2...b5.exe

windows10-2004-x64

Sharing

General

Target

7a7a461eb2717b429008f8c75abb075de4355ef677dbe4bdef5830653d30c5b5.exe
Size

1.8MB
Sample

250102-br2xasvrct
MD5

7096a99b6ebadcd73318516cb8af9ba0
SHA1

3d7118366b4556f987ecb836a954951db2a3439d
SHA256

7a7a461eb2717b429008f8c75abb075de4355ef677dbe4bdef5830653d30c5b5
SHA512

27b366ac2f22eb4021bf96b2fb7e46f948f3aa3fab94f5a559ca5d3765b75c2720087f230c11ae9089b1a7588016fe1ab42266077a5702428f8ef0260fd12dcc
SSDEEP

24576:GbJDcYm+kU3QAOTUlbM9+kU3QAOTUlbMU:IDufA2WbM9fA2WbMU

Score

10^/10

expiro backdoor discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

7a7a461eb2717b429008f8c75abb075de4355ef677dbe4bdef5830653d30c5b5.exe

Resource

win7-20241010-en

expiro backdoor discovery upx

windows7-x64

5 signatures

120 seconds

Behavioral task

behavioral2

Sample

7a7a461eb2717b429008f8c75abb075de4355ef677dbe4bdef5830653d30c5b5.exe

Resource

win10v2004-20241007-en

expiro backdoor discovery upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  7a7a461eb2717b429008f8c75abb075de4355ef677dbe4bdef5830653d30c5b5.exe
- Size
  
  1.8MB
- MD5
  
  7096a99b6ebadcd73318516cb8af9ba0
- SHA1
  
  3d7118366b4556f987ecb836a954951db2a3439d
- SHA256
  
  7a7a461eb2717b429008f8c75abb075de4355ef677dbe4bdef5830653d30c5b5
- SHA512
  
  27b366ac2f22eb4021bf96b2fb7e46f948f3aa3fab94f5a559ca5d3765b75c2720087f230c11ae9089b1a7588016fe1ab42266077a5702428f8ef0260fd12dcc
- SSDEEP
  
  24576:GbJDcYm+kU3QAOTUlbM9+kU3QAOTUlbMU:IDufA2WbM9fA2WbMU
Score

10^/10

expiro backdoor discovery upx
- Expiro family
  expiro
- Expiro, m0yv
  Expiro aka m0yv is a multi-functional backdoor written in C++.
  backdoor expiro
- Expiro payload
  backdoor
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

expirobackdoordiscoveryupx

behavioral2

expirobackdoordiscoveryupx

© 2018-2025

Terms | Privacy