eChartMobileServer[.]exe | Triage

Sharing

General

Target

eChartMobileServer.exe
Size

124KB
MD5

e54a8db2ec49fe4e984e321107c90e69
SHA1

3695cb9a8ba70f48282cacb3dca0938d6fdfd4fb
SHA256

f66accc3e23d34fa345e387e50aa47d3b9b2eb918fb9b366039e7dd8274a0c54
SHA512

55e9e64b824f5a402db04d575ea38888b5218ebc7cf9ec8f3e0ebccfd2b0bf0755be1e603eea0eff3f70d2ad290cda50b73eb3e24518fe463ed46e66703e92e6
SSDEEP

1536:ULcqc3Wc9a12/w4pVII1EnbuWFYF2b9cLPXka12/w4pV:8c9a1GpaI1EnbuNF2b9cLPXka1Gp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eChartMobileServer.exe

Files

eChartMobileServer.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ