home

TTR GE.exe

TTR Game Enhancer

TTR Game Enhancers

Publisher:
NA  (signed by TTR Game Enhancers)

Product:
TTR Game Enhancer

Version:
1.0.0.0

MD5:
5fd3cd186824e4fb3d35c39d4b704fb3

SHA-1:
4101f657a42236a070eea597069c54a37b416bb2

SHA-256:
bad6ef587902e57034f71774f21ae5e0ebdd373a3a723fc85f9ca61898489f21

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
1/14/2025 9:40:19 AM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
W32.HfsAutoB
1.3.0.7237

Trend Micro
TROJ_GEN.F0C2C00EF15
10.465.09

File size:
1.5 MB (1,551,344 bytes)

Product version:
1.0.0.0

Copyright:
NA

Trademarks:
NA

Original file name:
TTR GE.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\toontown rewritten hack\ttr ge.exe

Digital Signature
Signed by:
TTR Game Enhancers

Authority:
TTR Game Enhancers

Valid from:
1/31/2013 11:00:00 PM

Valid to:
12/31/2049 11:00:00 PM

Subject:
CN=TTR Game Enhancers

Issuer:
CN=TTR Game Enhancers

Serial number:
472F7E6DE2EEF3954373031BA8C64DE9

File PE Metadata
Compilation timestamp:
4/10/2015 2:25:27 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
24576:6qwtqby/4WF0Yox1c/nMbgyA14nPkwbyIgR7klyb5bXiYvGdqqrXMcKUKFZUsV:3XCb81eMbDA/ecIyliLqq4rb3Uw

Entry address:
0x2A0000

Entry point:
57, 89, E7, 55, 51, 68, 82, 25, 17, 2E, 59, 81, C1, E2, 13, 6F, 4B, 89, CD, 59, 81, F5, 60, 39, 86, 79, 01, EF, 5D, 83, EF, 04, 87, 3C, 24, 8B, 24, 24, 57, 89, E7, 81, C7, 04, 00, 00, 00, 53, BB, 04, 00, 00, 00, 29, DF, 5B, 87, 3C, 24, 8B, 24, 24, 89, 04, 24, 68, F3, 22, 00, 00, 89, 34, 24, 89, 1C, 24, E8, 01, 00, 00, 00, CC, FF, 34, 24, 8B, 04, 24, 51, 89, E1, 81, C1, 04, 00, 00, 00, 83, C1, 04, 87, 0C, 24, 5C, 81, C4, 04, 00, 00, 00, 83, EC, 04, 89, 34, 24, 81, EC, 04, 00, 00, 00, 89, 04, 24, 5E, 89, F3...
 
[+]

Entropy:
7.8328  (probably packed)

Code size:
448.5 KB (459,264 bytes)

Scan TTR GE.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.