home

TTR GE.exe

TTR Game Enhancer

TTR Game Enhancers

Publisher:
TTR Game Enhancers  (signed and verified)

Product:
TTR Game Enhancer

Description:
TTR Game Enhancers

Version:
0.0.0.0

MD5:
7dab3c3dcfb0b437b9257ce3c9129c78

SHA-1:
d3eeb1437cdafd27dc7a70bbb5b9f6355b7e1990

SHA-256:
46338fd8cf8a19d284d13d4671509645c1b871221e87a73406ddd60665288a22

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
1/13/2025 4:20:22 PM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
W32.HfsAutoB
1.3.0.7744

Qihoo 360 Security
HEUR/QVM19.1.0000.Malware.Gen
1.0.0.1120

File size:
2.5 MB (2,673,064 bytes)

Product version:
0.0.0.0

Original file name:
TTR GE.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\ttr ge.exe

Digital Signature
Signed by:
TTR Game Enhancers

Authority:
TTR Game Enhancers

Valid from:
6/18/2015 9:00:00 PM

Valid to:
6/18/2016 9:00:00 PM

Subject:
CN=TTR Game Enhancers

Issuer:
CN=TTR Game Enhancers

Serial number:
2B5EDAC3E76B788A4A28BD8C10B8B5D8

File PE Metadata
Compilation timestamp:
3/31/2016 9:40:36 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
49152:Fw/02DqEq4JAbYWxL1fwLxKJUMtv5N/RKBMG2TVUOqBxB1Xn:FO/eiuBa8yMtv56QBUOaF

Entry address:
0x4F0000

Entry point:
50, 89, E0, 05, 04, 00, 00, 00, 83, E8, 04, 87, 04, 24, 5C, 89, 34, 24, 68, 83, 79, 04, 43, 89, 2C, 24, 89, 04, 24, 53, C7, 04, 24, 3F, E0, 35, 4C, 89, 1C, 24, E8, 01, 00, 00, 00, CC, 8B, 04, 24, 53, 89, E3, 81, C3, 04, 00, 00, 00, 81, C3, 04, 00, 00, 00, 87, 1C, 24, 5C, 68, F2, 26, 2F, 17, 89, 04, 24, 5B, 53, BB, 01, 00, 00, 00, 01, D8, 5B, 53, BB, 00, C0, 1C, 00, 29, D8, 8B, 1C, 24, 83, C4, 04, 2D, 2E, 00, 85, 0D, 05, 00, 00, 85, 0D, 80, 3B, CC, 0F, 85, 62, 00, 00, 00, 51, B5, 00, 88, 2B, 8B, 0C, 24, 81...
 
[+]

Entropy:
7.8852  (probably packed)

Code size:
609.5 KB (624,128 bytes)

Scan TTR GE.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.