home

TTR GE.exe

TTR Game Enhancer

TTR Game Enhancers

Publisher:
TTR Game Enhancers  (signed and verified)

Product:
TTR Game Enhancer

Description:
TTR Game Enhancers

Version:
0.0.0.0

MD5:
74135b7d3c6197e06cf5b55b3fc64d9f

SHA-1:
43c2a4615f34ba5eb0f8120d2aeaedf3d0a433bb

SHA-256:
60fc53ce32a3b6aee21098557166573cc9e16734b5087f0e5ea7ced735072d32

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
1/13/2025 3:50:23 PM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
Backdoor/Win32.Graybird
2016.05.05

Qihoo 360 Security
HEUR/QVM19.1.0000.Malware.Gen
1.0.0.1120

File size:
2.9 MB (3,061,672 bytes)

Product version:
0.0.0.0

Original file name:
TTR GE.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\ttr ge.exe

Digital Signature
Signed by:
TTR Game Enhancers

Authority:
TTR Game Enhancers

Valid from:
6/19/2015 12:00:00 AM

Valid to:
6/19/2016 12:00:00 AM

Subject:
CN=TTR Game Enhancers

Issuer:
CN=TTR Game Enhancers

Serial number:
2B5EDAC3E76B788A4A28BD8C10B8B5D8

File PE Metadata
Compilation timestamp:
5/3/2016 12:17:14 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
49152:mQtqiYOZ5QI6jowKwimPX51mmnNgWGspLIQwgdtMbEsZC1Q3qP2cgo6HTsATUx:moqRZXWwPvbmmnNdwgIbmy3/1Zox

Entry address:
0x66A000

Entry point:
50, 89, E0, 57, BF, 9B, 62, EF, 75, 4F, 81, EF, 39, AB, BF, 5D, C1, EF, 01, 81, F7, B4, DB, 17, 0C, 01, F8, 5F, 2D, 04, 00, 00, 00, 87, 04, 24, 5C, 89, 34, 24, 52, C7, 04, 24, 54, B1, A4, 7C, F7, 1C, 24, 81, 34, 24, AC, C5, 53, C7, 89, 04, 24, 51, C7, 04, 24, 4A, 3D, F6, 6F, 81, 34, 24, 15, C1, BE, 76, 89, 1C, 24, E8, 01, 00, 00, 00, CC, FF, 34, 24, 8B, 04, 24, 83, C4, 04, 83, C4, 04, 83, EC, 04, 89, 04, 24, 81, 34, 24, 1D, 05, 7E, 67, 5B, 56, BE, 1D, 05, 7E, 67, 31, F3, 5E, 55, BD, 01, 00, 00, 00, 01, E8...
 
[+]

Entropy:
7.9260  (probably packed)

Code size:
588 KB (602,112 bytes)

Scan TTR GE.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.