home

TFC.exe

TFC

OldTimer Tools

This is a setup program which is used to install the application. The file has been seen being downloaded from oldtimer.geekstogo.com.
Publisher:
OldTimer Tools

Product:
TFC

Version:
3.1.7.0

MD5:
5b5d56738c261634c281c7ba1ca1a2df

SHA-1:
0f5cb90f64e936e8de187e7eae5b6dbf085afc37

SHA-256:
0b00c19d7cf9234d8a5e10cd9d330076e7cc88791edeeaa8cedcf77f5848b34d

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/25/2024 3:41:30 PM UTC  (today)

Scan engine
Detection
Engine version

AVG
Dropper.Generic9
2015.0.3512

Bkav FE
HW32.CDB
1.3.0.4959

Rising Antivirus
PE:Trojan.Win32.Generic.12723435!309474357
23.00.65.14405

File size:
436 KB (446,464 bytes)

Product version:
1.0.0.0

Original file name:
TFC.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:XJJDP6rJXf6VwAhjbowZrCLXWI/sxFlKYTQ5AITjwq1oN33vTa9uGZEN07JT5bb8:XJsrlyHCaCLg+oQ5/jdk3u9bfthQQxk

Entry address:
0x1000

Entry point:
B8, E8, 2C, 57, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 13, 5F, AC, 93, F6, DA, 0E, 4A, 3E, 62, 1D, 64, 84, 49, A1, B7, 3F, C0, FD, 1C, 14, 0A, AD, 77, 11, D2, DA, EC, 4A, 5B, FE, E7, 49, 6C, 13, 8A, CF, 0A, 76, 44, 8C, E7, 75, 6C, 22, E9, 3C, 43, E7, FE, 78, 10, 09, 4A, 52, 5B, 1B, 27, C8, ED, 69, 81, CA, BA, CB, AE, 8D, DE, 69, E0, D2, 0E, 27, 80, 2E, 94, 73, 9D, 02, FE, B3, 69, 16, 96, 98, 92, E5, 7F, 3D, 4D, F3, CA, 84...
 
[+]

Entropy:
7.9826

Packer / compiler:
PECompact v2

Code size:
1.2 MB (1,283,072 bytes)

The file TFC.exe has been seen being distributed by the following URL.

http://oldtimer.geekstogo.com/TFC.exe

Scan TFC.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.