expiro | ab8a102820fe8cf95b67f8ef42f2800c659bf65c73987e8bb5037e7f3d6a314c | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...43.exe

windows7-x64

JaffaCakes...43.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_d0483069db2ef3f8daccc6c7d8b25643
Size

437KB
Sample

250109-x125bazrdm
MD5

d0483069db2ef3f8daccc6c7d8b25643
SHA1

e2e0c2f66d32704fb01e0906bcdb0e2d7d120980
SHA256

ab8a102820fe8cf95b67f8ef42f2800c659bf65c73987e8bb5037e7f3d6a314c
SHA512

f9c15a2340fb57e1f09b72a4cf2d14605f5c6017d70ebbf0e9870ac3874a7ccb48020a06451e2ba7e7e36f7dc9123a802a2b0cf3f948f70a809550317687f993
SSDEEP

6144:UCVwm2i+mKaN68U8Wdvym8fXZk3/L07IkX/c6MVO4zXUdn1NwBLDmFBF3UN:Cri+m/A4Wx3UW/LzARMVO4sNyDm3F3U

Score

10^/10

expiro backdoor discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_d0483069db2ef3f8daccc6c7d8b25643.exe

Resource

win7-20241010-en

expiro backdoor discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_d0483069db2ef3f8daccc6c7d8b25643.exe

Resource

win10v2004-20241007-en

expiro backdoor discovery

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_d0483069db2ef3f8daccc6c7d8b25643
- Size
  
  437KB
- MD5
  
  d0483069db2ef3f8daccc6c7d8b25643
- SHA1
  
  e2e0c2f66d32704fb01e0906bcdb0e2d7d120980
- SHA256
  
  ab8a102820fe8cf95b67f8ef42f2800c659bf65c73987e8bb5037e7f3d6a314c
- SHA512
  
  f9c15a2340fb57e1f09b72a4cf2d14605f5c6017d70ebbf0e9870ac3874a7ccb48020a06451e2ba7e7e36f7dc9123a802a2b0cf3f948f70a809550317687f993
- SSDEEP
  
  6144:UCVwm2i+mKaN68U8Wdvym8fXZk3/L07IkX/c6MVO4zXUdn1NwBLDmFBF3UN:Cri+m/A4Wx3UW/LzARMVO4sNyDm3F3U
Score

10^/10

expiro backdoor discovery
- Expiro family
  expiro
- Expiro, m0yv
  Expiro aka m0yv is a multi-functional backdoor written in C++.
  backdoor expiro
- Expiro payload
  backdoor
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

expirobackdoordiscovery

behavioral2

expirobackdoordiscovery

© 2018-2025

Terms | Privacy