home

TTNET_Pratik_Cozum_Standalone.exe

The executable TTNET_Pratik_Cozum_Standalone.exe has been detected as malware by 8 anti-virus scanners. This is a setup program which is used to install the application. The file has been seen being downloaded from pratikcozum.ttnet.com.tr.
MD5:
dab774d68392817aa6a97d20018b2b38

SHA-1:
8891cb23d92097494b0dcf947dfaeafa87fbbd4f

SHA-256:
5997c993ea1c84e9093a88915a80d438d1e0b8e643bb4f14e6a89d67c95dfaa9

Scanner detections:
8 / 68

Status:
Malware

Analysis date:
11/23/2024 5:56:37 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.12251679
587

Dr.Web
Trojan.KillFiles.17536
9.0.1.0179

F-Secure
Trojan.Generic.12251679
11.2015-28-06_1

IKARUS anti.virus
Trojan.SuspectCRC
t3scan.1.8.5.0

McAfee
Artemis!C7CB1585AD58
5600.6721

MicroWorld eScan
Trojan.Generic.12251679
16.0.0.537

Trend Micro House Call
Suspicious_GEN.F47V1204
7.2.179

VIPRE Antivirus
Trojan.Win32.Generic
35986

File size:
17.3 MB (18,112,336 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\ttnet_pratik_cozum_standalone.exe

File PE Metadata
Compilation timestamp:
12/6/2009 12:50:41 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
393216:c6/jRbjFOxgradEtYnD8tcHJ2gGcXVv8/aGU5LwwsZMvLcW0/kqpDIbs:c6/Fvcxd9nDEi2g9J8yG7WcZ/0s

Entry address:
0x30CB

Entry point:
60, C6, C7, BA, C6, C6, FB, 69, F2, 2C, 3B, D8, 3D, 76, 02, 1B, EF, 89, C8, 85, C0, 04, 55, 81, FF, 62, 5D, 00, 00, 73, 05, 88, F7, F6, C7, 18, 80, DE, C7, 3B, FA, FE, CF, 88, C4, F2, B6, 7A, F2, 69, C6, D7, A5, 98, DC, E8, 00, 00, 00, 00, 84, DC, C7, C2, 64, 01, 50, EF, C7, C5, 10, D1, 09, 4E, 89, F5, EB, 0D, 81, DB, 92, 73, F5, C4, BB, 2E, C8, 68, 31, 89, F9, F6, C2, 55, 85, EB, FF, CB, 8D, 1A, 33, C9, 8D, 0B, 8A, FD, 1B, D9, C7, C3, 48, 13, A0, 47, 51, EB, 09, 8D, 1D, 55, 3A, 3C, A0, 0F, BF, DF, 58, 84...
 
[+]

Code size:
22.5 KB (23,040 bytes)

The file TTNET_Pratik_Cozum_Standalone.exe has been seen being distributed by the following URL.

https://pratikcozum.ttnet.com.tr/.../TTNET_Pratik_Cozum_Standalone.exe

Remove TTNET_Pratik_Cozum_Standalone.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.