home

pttm.exe

istart Application

This is a setup program which is used to install the application. The file has been seen being downloaded from dc402.4shared.com.
Product:
istart Application

Description:
istart MFC Application

Version:
1, 0, 0, 1

MD5:
a54b9d9d15405334e55e8d77203d2757

SHA-1:
7c6a8ce2bbc1e143d96d76a4495f8f91ebef0652

SHA-256:
94edfd2be215ebc79aa5eb732c68e69ccf666c6d5ff8a0eecc6dbb1857b65235

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/6/2024 12:54:01 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
23.00.65.15205

File size:
2.4 MB (2,492,417 bytes)

Product version:
1, 0, 0, 1

Copyright:
Copyright (C) 2003

Original file name:
istart.EXE

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
7/28/2004 8:47:59 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
24576:uMCCQwvFaUCjOsxYcMs14WypIOaiNLLTXZZbiQt+JFsJJ4uqZUx88Ek+qK:u7wvgNXX4xtNLpr+JFsKuqexEk+qK

Entry address:
0x2D4004

Entry point:
89, 25, 04, D0, 6E, 00, EB, 02, 83, C3, 68, 2D, 40, 6D, 00, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, E9, EE, 04, 00, 00, 76, 05, 89, FF, 77, 01, 80, 55, EB, 02, 83, EF, 89, E5, EB, 02, C7, 05, 8B, 45, 08, EB, 03, 7B, E0, 52, 8B, 00, EB, 02, FF, 15, EB, 02, 8F, 04, 3D, 03, 00, 00, 80, 75, 0B, 31, C0, EB, 02, F7, 05, EB, 23, EB, 01, BB, 3D, 04, 00, 00, 80, 75, 14, EB, 02, C7, 05, 31, C0, EB, 02, 03, C5, EB, 0D, 7F, 06, 8D, 1B, 7E, 02, EB, FF, B8, 01, 00, 00, 00, 5D, C3, EB, 01, 81, 55, EB, 02...
 
[+]

Code size:
284 KB (290,816 bytes)

The file pttm.exe has been discovered within the following program.

18 Wheels of Steel Pedal to the Metal  by ValuSoft
18 Wheels of Steel Pedal to the Metal is a budget digital game published and distributed by ValuSoft Cosmi.
www.valusoft.com
8% remove it
 
Powered by Should I Remove It?

The file pttm.exe has been seen being distributed by the following URL.

http://dc402.4shared.com/download/.../pttm.exe

Scan pttm.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.