expiro | b4a2f3c3d5d4dd3ed6f06be4a6061e9b4e67e4a3c5fc8fae2ec4f93819b6a65e | Triage

Submit
Reports

Overview

overview

Static

static

3

b4a2f3c3d5...5e.exe

windows7-x64

b4a2f3c3d5...5e.exe

windows10-2004-x64

Sharing

General

Target

b4a2f3c3d5d4dd3ed6f06be4a6061e9b4e67e4a3c5fc8fae2ec4f93819b6a65e.exe
Size

285KB
Sample

250107-2x8vxasnhy
MD5

34dea003bd27772ff052e54a35bb1756
SHA1

2fc579540210d36b90c209af5ea98b7b3d4d6d55
SHA256

b4a2f3c3d5d4dd3ed6f06be4a6061e9b4e67e4a3c5fc8fae2ec4f93819b6a65e
SHA512

8161f2c78f156c77d39f19c2398cec1986afa6e500ee94648ad6071eda761eeeec8d78c2e0cfaf53b1ec603e954ffc65a07325af34a04c58e37fa316f764eb5b
SSDEEP

6144:tOWCm+/c7R8Hm2rupNeanGnHNY9kkwjSz6YdXtwO2+ynTXSjrYQImYsRaTVrG36e:rMU7R8BSgmGntY9ojy6YdmOjmbSnRIm3

Score

10^/10

expiro backdoor discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b4a2f3c3d5d4dd3ed6f06be4a6061e9b4e67e4a3c5fc8fae2ec4f93819b6a65e.exe

Resource

win7-20241010-en

expiro backdoor discovery

windows7-x64

4 signatures

120 seconds

Behavioral task

behavioral2

Sample

b4a2f3c3d5d4dd3ed6f06be4a6061e9b4e67e4a3c5fc8fae2ec4f93819b6a65e.exe

Resource

win10v2004-20241007-en

expiro backdoor discovery

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Targets

- Target
  
  b4a2f3c3d5d4dd3ed6f06be4a6061e9b4e67e4a3c5fc8fae2ec4f93819b6a65e.exe
- Size
  
  285KB
- MD5
  
  34dea003bd27772ff052e54a35bb1756
- SHA1
  
  2fc579540210d36b90c209af5ea98b7b3d4d6d55
- SHA256
  
  b4a2f3c3d5d4dd3ed6f06be4a6061e9b4e67e4a3c5fc8fae2ec4f93819b6a65e
- SHA512
  
  8161f2c78f156c77d39f19c2398cec1986afa6e500ee94648ad6071eda761eeeec8d78c2e0cfaf53b1ec603e954ffc65a07325af34a04c58e37fa316f764eb5b
- SSDEEP
  
  6144:tOWCm+/c7R8Hm2rupNeanGnHNY9kkwjSz6YdXtwO2+ynTXSjrYQImYsRaTVrG36e:rMU7R8BSgmGntY9ojy6YdmOjmbSnRIm3
Score

10^/10

expiro backdoor discovery
- Expiro family
  expiro
- Expiro, m0yv
  Expiro aka m0yv is a multi-functional backdoor written in C++.
  backdoor expiro
- Expiro payload
  backdoor
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

expirobackdoordiscovery

behavioral2

expirobackdoordiscovery

© 2018-2025

Terms | Privacy