Overview

overview

3

Static

static

3

eChartMobi...er.exe

windows7-x64

1

eChartMobi...er.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    12-10-2023 18:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eChartMobileServer.exe

  • Size

    124KB

  • MD5

    e54a8db2ec49fe4e984e321107c90e69

  • SHA1

    3695cb9a8ba70f48282cacb3dca0938d6fdfd4fb

  • SHA256

    f66accc3e23d34fa345e387e50aa47d3b9b2eb918fb9b366039e7dd8274a0c54

  • SHA512

    55e9e64b824f5a402db04d575ea38888b5218ebc7cf9ec8f3e0ebccfd2b0bf0755be1e603eea0eff3f70d2ad290cda50b73eb3e24518fe463ed46e66703e92e6

  • SSDEEP

    1536:ULcqc3Wc9a12/w4pVII1EnbuWFYF2b9cLPXka12/w4pV:8c9a1GpaI1EnbuNF2b9cLPXka1Gp

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\eChartMobileServer.exe
    "C:\Users\Admin\AppData\Local\Temp\eChartMobileServer.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:2252

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2252-0-0x000007FEF51A0000-0x000007FEF5B3D000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2252-1-0x0000000000740000-0x00000000007C0000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2252-2-0x000007FEF51A0000-0x000007FEF5B3D000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2252-3-0x0000000000740000-0x00000000007C0000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2252-4-0x000007FEF51A0000-0x000007FEF5B3D000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2252-5-0x0000000000740000-0x00000000007C0000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2252-6-0x0000000000740000-0x00000000007C0000-memory.dmp

    Filesize

    512KB

    Download