ET-Optimizer[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ET-Optimizer.exe
Size

899KB
MD5

a852fd25763113c811c90012dcbf1d84
SHA1

8e815a82df2f80840ed591e9ff47313799eefdd9
SHA256

e3a4b0bf81a4c39532a91ced405dbdd0032091214c55dd35e3525cbb3a4fabd5
SHA512

b53b0a229e732991d7672460566ad87436648461a4439c557a9ed340c60c88e11d195cb2003490da66ac8d73bc97b1768515216b1f538c2ef817fca59fdec84a
SSDEEP

6144:Egvc4XeDHbkZ+KWEx+R2EmwSn7+42Qmw0:EL2emP+1mwS+Ymw0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ET-Optimizer.exe

Files

ET-Optimizer.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Rikey\source\repos\ET\ET\obj\Debug\ET.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 531KB - Virtual size: 531KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 366KB - Virtual size: 366KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ