» aipackagechainer.exe
Overview
Analysis
File Details

aipackagechainer.exe

OptiSoft LLC

The application aipackagechainer.exe, “Boost Your PC To Achieve Optimum Performance” by OptiSoft has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.

File name:

Publisher:

Optimum PC Boost (signed by OptiSoft LLC)

Product:

Optimum PC Boost

Description:

Boost Your PC To Achieve Optimum Performance

Version:

1.0.15

MD5:

d039e5e23f686b403cfba9d2279ad857

SHA-1:

3301313de21b45c97f4ac1686e727121de80242d

SHA-256:

66eb79a3bce9a8fea65da83f166b8c1a4e6f0fe25f0d018c4cffc83809d56dff

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

4/16/2024 6:46:40 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

Win32.Generic

16.8.11.7

File size:

278.6 KB (285,240 bytes)

Product version:

1.0.15

Original file name:

aipackagechainer.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Common path:

C:\users\{user}\appdata\local\temp\{random}.tmp\aipackagechainer.exe

Digital Signature

Signed by:

OptiSoft LLC

Authority:

GoDaddy.com, Inc.

Valid from:

4/24/2014 12:40:02 AM

Valid to:

4/22/2015 3:16:50 PM

Subject:

CN=OptiSoft LLC, O=OptiSoft LLC, L=Sunrise, S=Florida, C=US

Issuer:

CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:

2B644BFEEA42C3

File PE Metadata

Compilation timestamp:

5/21/2014 4:06:46 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

6144:AklW+GHKFcY3KH/6gfJLPkPmV8O0WUJXNuJx4Z:A4WzHmKH/ffJzkPG8nJ4I

Entry address:

0x16FF2

Entry point:

E8, B5, 58, 00, 00, E9, 79, FE, FF, FF, CC, CC, CC, CC, 8B, 54, 24, 04, 8B, 4C, 24, 08, F7, C2, 03, 00, 00, 00, 75, 3C, 8B, 02, 3A, 01, 75, 2E, 0A, C0, 74, 26, 3A, 61, 01, 75, 25, 0A, E4, 74, 1D, C1, E8, 10, 3A, 41, 02, 75, 19, 0A, C0, 74, 11, 3A, 61, 03, 75, 10, 83, C1, 04, 83, C2, 04, 0A, E4, 75, D2, 8B, FF, 33, C0, C3, 90, 1B, C0, D1, E0, 83, C0, 01, C3, F7, C2, 01, 00, 00, 00, 74, 18, 8A, 02, 83, C2, 01, 3A, 01, 75, E7, 83, C1, 01, 0A, C0, 74, DC, F7, C2, 02, 00, 00, 00, 74, A4, 66, 8B, 02, 83, C2, 02... 
[+]

Entropy:

6.2889

Code size:

152.5 KB (156,160 bytes)

Remove aipackagechainer.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.