expiro | c72f52d9624f9b8199165efdf861062ecb74b0cab19006dfc4307d349bb45e31 | Triage

Submit
Reports

Overview

overview

Static

static

3

c72f52d962...31.exe

windows7-x64

c72f52d962...31.exe

windows10-2004-x64

Sharing

General

Target

c72f52d9624f9b8199165efdf861062ecb74b0cab19006dfc4307d349bb45e31
Size

1.7MB
Sample

250208-tb19yavnfj
MD5

f03ed830fb1b9946380b3806db0bf77d
SHA1

eaeb32a8f403f165bea4f97e2449db76d65900b6
SHA256

c72f52d9624f9b8199165efdf861062ecb74b0cab19006dfc4307d349bb45e31
SHA512

135eef5203f128058999d67cbf75e8a134bb497e739e64bead3f01ad85202815335e3267fbf796b71f54bb397eb24340af7067ede7f564e47b93321f922a1192
SSDEEP

49152:PK9QYfDPJZr9ra11M+jtIbCRLlv7p0tdZwAweQsqn6:PK9Q0DPpIxkCvV0tM9eQsq

Score

10^/10

expiro backdoor discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c72f52d9624f9b8199165efdf861062ecb74b0cab19006dfc4307d349bb45e31.exe

Resource

win7-20241010-en

expiro backdoor discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

c72f52d9624f9b8199165efdf861062ecb74b0cab19006dfc4307d349bb45e31.exe

Resource

win10v2004-20250207-en

expiro backdoor discovery

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  c72f52d9624f9b8199165efdf861062ecb74b0cab19006dfc4307d349bb45e31
- Size
  
  1.7MB
- MD5
  
  f03ed830fb1b9946380b3806db0bf77d
- SHA1
  
  eaeb32a8f403f165bea4f97e2449db76d65900b6
- SHA256
  
  c72f52d9624f9b8199165efdf861062ecb74b0cab19006dfc4307d349bb45e31
- SHA512
  
  135eef5203f128058999d67cbf75e8a134bb497e739e64bead3f01ad85202815335e3267fbf796b71f54bb397eb24340af7067ede7f564e47b93321f922a1192
- SSDEEP
  
  49152:PK9QYfDPJZr9ra11M+jtIbCRLlv7p0tdZwAweQsqn6:PK9Q0DPpIxkCvV0tM9eQsq
Score

10^/10

expiro backdoor discovery
- Expiro family
  expiro
- Expiro, m0yv
  Expiro aka m0yv is a multi-functional backdoor written in C++.
  backdoor expiro
- Expiro payload
  backdoor
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

expirobackdoordiscovery

behavioral2

expirobackdoordiscovery

© 2018-2025

Terms | Privacy