» ttr_ge_helper.exe
Overview
Analysis
File Details

ttr_ge_helper.exe

TTR Game Enhancers

File name:

ttr_ge_helper.exe

Publisher:

TTR Game Enhancers (signed and verified)

MD5:

eb0f7d17f8683c6faa2ec869b8715d80

SHA-1:

3a3b837111af410acb6d6d06820d9dbc5e9d7999

SHA-256:

aea36bd341cb0a1de15a0a51e700b85e9dccbcb8e305b7a04422007b333aa998

Scanner detections:

3 / 68

Status:

Clean (3 probable false positive detections)

Explanation:

These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:

1/13/2025 3:44:18 PM UTC (today)

Scan engine

Detection

Engine version

Bkav FE

W32.HfsAutoB

1.3.0.7400

IKARUS anti.virus

Trojan.Win32.Themida

t3scan.1.9.5.0

Rising Antivirus

PE:Packer.Win32.Mian007.a!493501 [F]

23.00.65.16131

File size:

5.7 MB (6,012,912 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\new new\ttr_ge_helper.exe

Digital Signature

Signed by:

TTR Game Enhancers

Authority:

TTR Game Enhancers

Valid from:

6/19/2015 12:00:00 AM

Valid to:

6/19/2016 12:00:00 AM

Subject:

CN=TTR Game Enhancers

Issuer:

CN=TTR Game Enhancers

Serial number:

2B5EDAC3E76B788A4A28BD8C10B8B5D8

File PE Metadata

Compilation timestamp:

6/28/2013 10:45:44 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

98304:rzd4MIqA4t6KZZn52SPDyyhYpgejHbveEVmm3sjOVgirVGD6Eov/ip:raOzdZ2SPDyr1jHbVmm3zVKovk

Entry address:

0x824000

Entry point:

52, 89, E2, 81, C2, 04, 00, 00, 00, 81, EA, 04, 00, 00, 00, 33, 14, 24, 31, 14, 24, 33, 14, 24, 5C, 89, 34, 24, 55, 89, E5, 81, C5, 04, 00, 00, 00, 83, ED, 04, 87, 2C, 24, 5C, 89, 04, 24, 83, EC, 04, 89, 14, 24, 89, E2, 81, C2, 04, 00, 00, 00, 83, EA, 04, 87, 14, 24, 5C, 89, 1C, 24, E8, 01, 00, 00, 00, CC, FF, 34, 24, 8B, 04, 24, 83, C4, 04, 81, C4, 04, 00, 00, 00, 50, 81, 34, 24, 41, D5, 32, 7F, 5B, 55, BD, 41, D5, 32, 7F, 31, EB, 8B, 2C, 24, 81, C4, 04, 00, 00, 00, 57, BF, DE, CB, FC, 7F, C1, EF, 06, 50... 
[+]

Entropy:

7.9873 (probably packed)

Code size:

35.5 KB (36,352 bytes)

Scan ttr_ge_helper.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.