home

tweaking_rati.exe

Tweaking.com - Run As TrustedInstaller

Tweaking LLC

Publisher:
Tweaking.com  (signed by Tweaking LLC)

Product:
Tweaking.com - Run As TrustedInstaller

Version:
2.1.0.0

MD5:
e90316c02a1715c6096595d8e83ac603

SHA-1:
3800458a02a90339a462502317a1fbbbd8a3d715

SHA-256:
d3e438560e41b77e06f4eaab36c5240c318f2ef5ba59da45383f55c75fd85a84

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/24/2024 2:20:15 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Dropper.Gen
7.11.30.172

Qihoo 360 Security
Malware.QVM03.Gen
1.0.0.1015

File size:
45 KB (46,048 bytes)

Product version:
2.1.0.0

Copyright:
2014

Trademarks:
2014

Original file name:
tweaking_rati.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\tweaking.com\windows repair (all in one)\files\tweaking_rati.exe

Digital Signature
Signed by:
Tweaking LLC

Authority:
COMODO CA Limited

Valid from:
1/5/2014 4:00:00 PM

Valid to:
1/6/2015 3:59:59 PM

Subject:
CN=Tweaking LLC, OU=Major Geeks, O=Tweaking LLC, POBox=13031, STREET=7 Braniff Dr, L=Camillus, S=New York, PostalCode=13031, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
253149477D94A2376AC159DBFD034428

File PE Metadata
Compilation timestamp:
8/19/2014 3:58:36 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
768:HaF4+Qjw+GMv1Hqv1H2v1KECiouspc4M3L3hxDs:HaFijwS2CKENouss3L3hK

Entry address:
0x16F8

Entry point:
68, 88, 19, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 60, 00, 00, 00, 48, 00, 00, 00, ED, 13, 8E, 88, 6A, 52, 0E, 42, B9, 1F, FF, 0D, 71, 05, DC, 51, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 2D, 43, 30, 30, 30, 2D, 52, 75, 6E, 41, 73, 54, 72, 75, 73, 74, 65, 64, 49, 6E, 73, 74, 61, 6C, 6C, 65, 72, 00, 5C, 57, 52, 75, 6E, 41, 73, 54, 72, 75, 73, 74, 65, 64, 49, 6E, 73, 74, 61, 6C, 6C, 65, 72, 00, 32, 2E, 00, 00, 00, 00, 01, 00, 02, 00, A8, 1D, 40, 00, 00, 00, 00, 00, FF, FF, FF, FF...
 
[+]

Entropy:
5.5529

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
24 KB (24,576 bytes)

Scan tweaking_rati.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.