home

TTR GE.exe

TTR Game Enhancer

TTR Game Enhancers

Publisher:
NA  (signed by TTR Game Enhancers)

Product:
TTR Game Enhancer

Version:
1.0.0.0

MD5:
de4b62b92137bdbc92048c758b47a212

SHA-1:
cfe37ccdd0c3e587ddae4b76a0b30e1b71b2cd6e

SHA-256:
90de8db0fd19b91d3f9d8276221852a2385bf46d23c69de4e71f9528a864279c

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
1/14/2025 9:17:35 AM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
W32.HfsAutoB
1.3.0.6379

Qihoo 360 Security
HEUR/QVM19.1.Malware.Gen
1.0.0.1015

File size:
2.5 MB (2,635,248 bytes)

Product version:
1.0.0.0

Copyright:
NA

Trademarks:
NA

Original file name:
TTR GE.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\toontown rewritten hack\ttr ge.exe

Digital Signature
Signed by:
TTR Game Enhancers

Authority:
TTR Game Enhancers

Valid from:
2/1/2013 4:00:00 AM

Valid to:
1/1/2050 4:00:00 AM

Subject:
CN=TTR Game Enhancers

Issuer:
CN=TTR Game Enhancers

Serial number:
472F7E6DE2EEF3954373031BA8C64DE9

File PE Metadata
Compilation timestamp:
5/5/2015 5:10:59 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
49152:t5RbmqNrTu0h48b8fahT7+bJ5M0KgOs17miaZv5jU9:AqpSb8b88QMrI1B9

Entry address:
0x49C000

Entry point:
51, 89, E1, 81, C1, 04, 00, 00, 00, 83, E9, 04, 33, 0C, 24, 31, 0C, 24, 33, 0C, 24, 5C, 50, 89, E0, 05, 04, 00, 00, 00, 2D, 04, 00, 00, 00, 87, 04, 24, 5C, 89, 04, 24, 50, 89, E0, 05, 04, 00, 00, 00, 83, E8, 04, 87, 04, 24, 5C, 89, 1C, 24, E8, 01, 00, 00, 00, CC, 8B, 04, 24, 57, 89, E7, 81, C7, 04, 00, 00, 00, 83, C7, 04, 87, 3C, 24, 5C, 81, EC, 04, 00, 00, 00, 89, 04, 24, 5B, 81, EC, 04, 00, 00, 00, 89, 04, 24, FF, 04, 24, 58, 51, B9, 39, 5B, C3, 63, 41, 81, F1, 69, 12, 41, 01, C1, E1, 05, 81, C1, FF, FF...
 
[+]

Entropy:
7.8144  (probably packed)

Code size:
453 KB (463,872 bytes)

Scan TTR GE.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.