The OptiCraft exe File Malware Analysis

Hash Type	Value	Action
MD5	fa727c4d2e9e51b4790383bb51d08d1f
SHA1	9cecc0ba06f2bfbef07f9d54661e084f3456d963
SHA256	316f33a5f81fba7b7d99514b80ccbe7a4117dc05ab76f2a33624263a2ab1bf1a
SHA512	1081b1ced09d92774d178d59ab25239ba4174947e54dd20125a9122d0edd2fea09b87ef3c6b4a8e8ff59b92e79a941b66e92feef4c4f04f36162e8fce5010a53
ImpHash	baa93d47220682c04d92f7797d9224ce

PE Analysis

Basic Information

▼

Icon	Hash: 3bc8690614b88af935190dd6fe6fa06b Fuzzy: 8b82fbbe15eaa56f4df54cbcb0d367a0 dHash: 66e61c4485ac28a6
Image Base	`0x00400000`
Entry Point	`0x05951000`
Compilation Time	2022-06-23 23:59:21
Checksum	0x0555c444 (Actual: 0x0555b507)
OS Version	6.0
PEiD Signatures	`PE32 executable (GUI) Intel 80386, for MS Windows`
Digital Signature	No valid SignedData structure was found.
Imports	2 libraries kernel32, comctl32
Exports	289 functions
Resources	2 Resources
Sections	5 Sections

PE Sections

▼

Name	Virtual Address	Virtual Size	Raw Size	Entropy	Characteristics	MD5
	`0x00001000`	65,761,280 bytes	65,761,280 bytes	6.46 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_EXECUTE\|IMAGE_SCN_MEM_READ\|IMAGE_SCN_MEM_WRITE`	`0E0FAE76D9AF0FCA63E1F3077CCADB1C`
`.rsrc`	`0x03eb8000`	131,072 bytes	128,512 bytes	4.52 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_READ\|IMAGE_SCN_MEM_WRITE`	`0FAFED3F56E3EE0A815410014C078D8D`
`.idata`	`0x03ed8000`	4,096 bytes	512 bytes	1.44 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_READ\|IMAGE_SCN_MEM_WRITE`	`60F577C622C95C11B7D8605E8E93CFFA`
`npnfwhld`	`0x03ed9000`	23,560,192 bytes	23,559,168 bytes	3.72 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_EXECUTE\|IMAGE_SCN_MEM_READ\|IMAGE_SCN_MEM_WRITE`	`83C1A363533F357CD150664E3064FB3D`
`ltmsvekk`	`0x05551000`	5,513 bytes	5,632 bytes	2.31 (Normal)	`IMAGE_SCN_CNT_INITIALIZED_DATA\|IMAGE_SCN_MEM_EXECUTE\|IMAGE_SCN_MEM_READ\|IMAGE_SCN_MEM_WRITE`	`57795FF0E70E4905AC49BC3ECA144273`

Resource Analysis

▼

Total Resources: 2 (128,188 bytes)

Resource Type	Count	Total Size	Percentage
RT_ICON	1	128,168 bytes	100%
RT_GROUP_ICON	1	20 bytes	0%

Certificate Chain Analysis

▼

Certificate Information

Certificate Chain Summary

AAA Certificate Services #1 Primary

Validity Period: 2004-01-01 00:00:00 → 2028-12-31 23:59:59

Signature Algorithm: sha1RSA

Serial Number: 01

GlobalSign #2 Chain

Validity Period: 2014-12-10 00:00:00 → 2034-12-10 00:00:00

Signature Algorithm: sha384RSA

Serial Number: 45 E6 BB 03 83 33 C3 85 65 48 E6 FF 45 51

DigiCert Global Root CA #3 Chain

Validity Period: 2006-11-10 00:00:00 → 2031-11-10 00:00:00

Signature Algorithm: sha1RSA

Serial Number: 08 3B E0 56 90 42 46 B1 A1 75 6A C9 59 91 C7 4A

USERTrust RSA Certification Authority #4 Chain

Validity Period: 2010-02-01 00:00:00 → 2038-01-18 23:59:59

Signature Algorithm: sha384RSA

Serial Number: 01 FD 6D 30 FC A3 CA 51 A8 1B BC 64 0E 35 03 2D

GlobalSign #5 Chain

Validity Period: 2009-03-18 10:00:00 → 2029-03-18 10:00:00

Signature Algorithm: sha256RSA

Serial Number: 04 00 00 00 00 01 21 58 53 08 A2

GlobalSign #6 Chain

Validity Period: 2006-12-15 08:00:00 → 2021-12-15 08:00:00

Signature Algorithm: sha1RSA

Serial Number: 04 00 00 00 00 01 0F 86 26 E6 0D

AffirmTrust Premium #7 Chain

Validity Period: 2010-01-29 14:10:36 → 2040-12-31 14:10:36

Signature Algorithm: sha384RSA

Serial Number: 6D 8C 14 46 B1 A6 0A EE

Baltimore CyberTrust Root #8 Chain

Validity Period: 2000-05-12 18:46:00 → 2025-05-12 23:59:00

Signature Algorithm: sha1RSA

Serial Number: 02 00 00 B9

DigiCert Assured ID Root CA #9 Chain

Validity Period: 2006-11-10 00:00:00 → 2031-11-10 00:00:00

Signature Algorithm: sha1RSA

Serial Number: 0C E7 E0 E5 17 D8 46 FE 8F E5 60 FC 1B F0 30 39

Starfield Root Certificate Authority - G2 #10 Chain

Validity Period: 2009-09-01 00:00:00 → 2037-12-31 23:59:59

Signature Algorithm: sha256RSA

Serial Number: 00

AffirmTrust Networking #11 Chain

Validity Period: 2010-01-29 14:08:24 → 2030-12-31 14:08:24

Signature Algorithm: sha1RSA

Serial Number: 7C 4F 04 39 1C D4 99 2D

GlobalSign Root CA #12 Chain

Validity Period: 1998-09-01 12:00:00 → 2028-01-28 12:00:00

Signature Algorithm: sha1RSA

Serial Number: 04 00 00 00 00 01 15 4B 5A C3 94

GTS Root R3 #13 Chain

Validity Period: 2016-06-22 00:00:00 → 2036-06-22 00:00:00

Signature Algorithm: SHA384ECDSA

Serial Number: 6E 47 A9 C7 6C A9 73 24 40 89 0F 03 55 DD 8D 1D

COMODO RSA Certification Authority #14 Chain

Validity Period: 2010-01-19 00:00:00 → 2038-01-18 23:59:59

Signature Algorithm: sha384RSA

Serial Number: 4C AA F9 CA DB 63 6F E0 1F F7 4E D8 5B 03 86 9D

GTS Root R2 #15 Chain

Validity Period: 2016-06-22 00:00:00 → 2036-06-22 00:00:00

Signature Algorithm: sha384RSA

Serial Number: 6E 47 A9 C6 5A B3 E7 20 C5 30 9A 3F 68 52 F2 6F

✓ This file has been digitally signed and the certificate chain has been verified

The signature ensures file integrity and authenticity from the publisher
Timestamping proves when the signature was applied

Certificate Verification Status

No valid SignedData structure was found.

Recommendation: Verify the file source and ensure it comes from a trusted publisher.

File Name	OptiCraft.exe
File Type	PE32 executable (GUI) Intel 80386, for MS Windows
Scanner Version	1.0.212.174
Database Version	2025-04-09 11:01:17 UTC

The OptiCraft.exe File Analysis

Technical Analysis

Clean File

Scan Another File

File Identification

PE Analysis

Basic Information

PE Sections

Resource Analysis

Certificate Chain Analysis

Certificate Information

Certificate Chain Summary

Certificate Verification Status

Remember: This is Result of Online Virus Scanner

Keep Your System Protected

Leave a Comment

Gridinsoft Anti-Malware