home

dscegoclient.exe

e-Go

Data Systems Consulting Co., Ltd.

It runs as a separate (within the context of its own process) windows Service named “dscegoClient”.
Publisher:
鼎新電腦  (signed by Data Systems Consulting Co., Ltd.)

Product:
e-Go

Description:
e-Go訊息接收員

Version:
2.0.1.52

MD5:
36e473593cfb30c65e60ad92f5da90dc

SHA-1:
1f010da70e6d928078debd685003f8f350b5e46d

SHA-256:
a6593b9ea8f83a8993a5b8171a742c85fb95c00a47c5bb9d8bb4979ab5f1dd46

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/24/2024 2:39:17 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
W32/Ramnit.C
7.11.30.172

File size:
792.4 KB (811,376 bytes)

Product version:
2.0.0

Copyright:
超級特助(C)

File type:
Executable application (Win32 EXE)

Digital Signature
Signed by:
Data Systems Consulting Co., Ltd.

Authority:
VeriSign, Inc.

Valid from:
11/14/2006 8:00:00 AM

Valid to:
11/18/2007 7:59:59 AM

Subject:
CN="Data Systems Consulting Co., Ltd.", OU=R & D Department, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Data Systems Consulting Co., Ltd.", L=Taipei, S=Taiwan, C=TW

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
301C31A458495D2B72BB87354D60DAAE

File PE Metadata
Compilation timestamp:
6/20/1992 6:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:0XWi9lyJboLTC5viRU+7DP2z8M4EPHpnoYs8OqTNw0oudjVONs1:q9abW2KSciY+hav05or0

Entry address:
0xAB638

Entry point:
55, 8B, EC, 83, C4, F0, 53, B8, 88, B2, 4A, 00, E8, 0F, B9, F5, FF, A1, A8, E4, 4A, 00, 8B, 00, 8B, 10, FF, 52, 34, A1, A8, E4, 4A, 00, 8B, 00, 83, C0, 34, BA, 9C, B6, 4A, 00, E8, A3, 91, F5, FF, 8B, 0D, DC, E0, 4A, 00, A1, A8, E4, 4A, 00, 8B, 00, 8B, 15, 34, 78, 4A, 00, 8B, 18, FF, 53, 30, A1, A8, E4, 4A, 00, 8B, 00, 8B, 10, FF, 52, 38, 5B, E8, 91, 8F, F5, FF, 00, FF, FF, FF, FF, 0E, 00, 00, 00, 65, 2D, 47, 6F, B0, 54, AE, A7, B1, B5, A6, AC, AD, FB, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.6305

Developed / compiled with:
Microsoft Visual C++

Code size:
682 KB (698,368 bytes)

Service
Display name:
dscegoClient

Service name:
dscegoClientF

Type:
Win32OwnProcess


Scan dscegoclient.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.