Virus

Virus:Win32/Expiro.CC malicious file

Malware Removal

The Virus:Win32/Expiro.CC is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Virus:Win32/Expiro.CC virus can do?

  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Virus:Win32/Expiro.CC?



File Info:

name: C27501AA2F4E2E26C73C.mlw
path: /opt/CAPEv2/storage/binaries/2773690e27a8526ae1c9e87eb9dcac1bddcb9f10934253e0b43b639a43a8f95d
crc32: 962256E2
md5: c27501aa2f4e2e26c73c2b3869335f10
sha1: 14cdb73da177c06ec5eecd48bb2483ceae5adec2
sha256: 2773690e27a8526ae1c9e87eb9dcac1bddcb9f10934253e0b43b639a43a8f95d
sha512: 56868bb8bc37ad31f69b4abea2dce695cf1ca24ac0b5282d586687981457bf7e65da69592d541f6cab30e13259d5e3ccee8071a7a9d335282a8aff942db23aca
ssdeep: 12288:w11sa9f80yvS65UWnaZ9vMC3j9898JIgYcJr:cfbyqxZpx3j98fG
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T18AC47E1B13969D60DD5EF9BA22339B3CC5056872EE0B331724BC9A5847FE4C8601E7B9
sha3_384: 9036ee499a4eb3b7b55000571b5946dfcaf0db88ed3ddada73338442433206390b3c5f1acc44c6d3ff870623a4b3809b
ep_bytes: 605589e581ec08010000be02000000bb
timestamp: 2009-07-13 23:54:56


Version Info:

CompanyName: Microsoft Corporation
FileDescription: TCP/IP Arp Command
FileVersion: 6.1.7600.16385 (win7_rtm.090713-1255)
InternalName: arp.exe
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: arp.exe
ProductName: Microsoft® Windows® Operating System
ProductVersion: 6.1.7600.16385
Translation: 0x0409 0x04b0

Virus:Win32/Expiro.CC also known as:

BkavW32.Expiro2NHc.PE
LionicVirus.Win32.Expiro.lVIM
MicroWorld-eScanWin32.Expiro.Gen.3
FireEyeGeneric.mg.c27501aa2f4e2e26
SkyhighBehavesLike.Win32.Expiro.hc
ALYacWin32.Expiro.Gen.3
Cylanceunsafe
SangforTrojan.Win32.Save.a
K7AntiVirusVirus ( 0040f4dc1 )
AlibabaVirus:Win32/Expiro.9d0d5bb8
K7GWVirus ( 0040f4dc1 )
Cybereasonmalicious.a2f4e2
ArcabitWin32.Expiro.Gen.3
BaiduWin32.Virus.Expiro.c
VirITWin32.Expiro.AM
SymantecW32.Xpiro.F
ESET-NOD32Win32/Expiro.AS
APEXMalicious
TrendMicro-HouseCallPE_EXPIRO.AR
McAfeeW32/Expiro.gen.p
ClamAVWin.Virus.Expiro-9898150-0
KasperskyVirus.Win32.Expiro.ar
BitDefenderWin32.Expiro.Gen.3
NANO-AntivirusVirus.Win32.Expiro.clnvwd
AvastWin32:Xpirat [Inf]
TencentVirus.Win32.Expiro.tt
EmsisoftWin32.Expiro.Gen.3 (B)
F-SecureTrojan.TR/Patched.Gen
DrWebWin32.Expiro.80
VIPREWin32.Expiro.Gen.3
TrendMicroPE_EXPIRO.AR
Trapminemalicious.high.ml.score
SophosW32/Expiro-S
IkarusVirus.Win32.Expiro
GoogleDetected
AviraTR/Patched.Gen
VaristW32/Expiro.BG
Antiy-AVLVirus/Win32.Expiro.nr
KingsoftWin32.Infected.AutoInfector.a
XcitiumVirus.Win32.Expiro.SR@564eat
MicrosoftVirus:Win32/Expiro.CC
ZoneAlarmVirus.Win32.Expiro.ar
GDataWin32.Expiro.Gen.3
CynetMalicious (score: 100)
AhnLab-V3Win32/Expiro5.Gen
Acronissuspicious
BitDefenderThetaAI:FileInfector.6CBEB04B12
MAXmalware (ai score=100)
VBA32Virus.Expiro.11109
MalwarebytesGeneric.Malware.AI.DDS
PandaW32/Expiro.O
RisingVirus.Expiro!1.A140 (CLASSIC)
SentinelOneStatic AI – Malicious PE
FortinetW32/Expiro.W
AVGWin32:Xpirat [Inf]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_100% (W)
alibabacloudVirus:Win/Expiro.AS

How to remove Virus:Win32/Expiro.CC?

Virus:Win32/Expiro.CC removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment