home

dicomviewerlite.exe

DICOM Simple Viewer

Adani Co.

This is a setup program which is used to install the application. The file has been seen being downloaded from e.mail.ru.
Publisher:
Adani Co.

Product:
DICOM Simple Viewer

Description:
Simple viewer for DICOM files

Version:
1.0.2.0

MD5:
614f036dc0303b6641d17a7afee26bed

SHA-1:
ee20ffc752454bb8410173bd4debf6f76bd22c82

SHA-256:
aa7665e7ee6e61000ef6040d6bd3ef3dc9db7c4c9fe750d5396eeb689672cd23

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 12:56:20 AM UTC  (today)

File size:
2.6 MB (2,704,384 bytes)

Product version:
1.0

Copyright:
Copyright © ADANI Co.

Original file name:
DICOMSimpleView.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\dicomviewerlite.exe

File PE Metadata
Compilation timestamp:
6/27/2013 10:28:43 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:U50TqV+zp8Fv7RXOPSvq05O2laSow4YOjGnHIwvkmThl:xuOjivv

Entry address:
0x2401A0

Entry point:
55, 8B, EC, 83, C4, F0, B8, 94, 64, 63, 00, E8, B4, B5, DC, FF, A1, 48, A6, 64, 00, 8B, 00, BA, 28, 02, 64, 00, E8, 3B, B1, F4, FF, A1, 48, A6, 64, 00, 8B, 00, E8, 33, B7, F4, FF, 8B, 0D, 38, A3, 64, 00, A1, 48, A6, 64, 00, 8B, 00, 8B, 15, 7C, 21, 63, 00, E8, 33, B7, F4, FF, 8B, 0D, B0, A1, 64, 00, A1, 48, A6, 64, 00, 8B, 00, 8B, 15, 88, 7B, 61, 00, E8, 1B, B7, F4, FF, A1, 38, A3, 64, 00, 8B, 00, E8, 4F, 50, FF, FF, A1, 48, A6, 64, 00, 8B, 00, E8, 67, B8, F4, FF, E8, 1A, 74, DC, FF, 00, 00, B0, 04, 02, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
2.2 MB (2,355,712 bytes)

The file dicomviewerlite.exe has been seen being distributed by the following URL.

https://e.mail.ru/cgi-bin/.../octet-stream&cn=DICOMViewerLite.exe&cte=binary&notype=1&file=DICOMViewerLite.exe&mode=attachment&channel

Scan dicomviewerlite.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.