home

elmtviewer.exe

This is a setup program which is used to install the application. The file has been seen being downloaded from download.tuxfamily.org.
MD5:
4fe4d8d0b775933a56ab483c9b6a4ad7

SHA-1:
c9e0a13703be9793b362dce39092bd9e64dea5ba

SHA-256:
10a30834ce1e4d76ad36293ac2278e315dcf70d3ad6fc83e1ced22dd03a8731d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/20/2024 3:37:59 PM UTC  (today)

File size:
554 KB (567,296 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\elmtviewer.exe

File PE Metadata
Compilation timestamp:
3/15/2009 6:30:26 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.56

CTPH (ssdeep):
12288:/nV96QwSPYydmtesY0PBDkoFbwpGyWhpF7a6TKJZv0YEcZ8UHJm:/D6QwSPYydmtesY0P5ka9TKJR0en

Entry address:
0x1240

Entry point:
55, 89, E5, 83, EC, 08, C7, 04, 24, 02, 00, 00, 00, FF, 15, C8, 98, 47, 00, E8, A8, FE, FF, FF, 90, 8D, B4, 26, 00, 00, 00, 00, 55, 8B, 0D, 04, 99, 47, 00, 89, E5, 5D, FF, E1, 8D, 74, 26, 00, 55, 8B, 0D, EC, 98, 47, 00, 89, E5, 5D, FF, E1, 90, 90, 90, 90, 55, 89, E5, 5D, E9, 17, F1, 02, 00, 90, 90, 90, 90, 90, 90, 90, 55, 89, E5, 8B, 45, 08, 5D, 8B, 50, 54, 8B, 42, 0C, 8B, 4A, 08, 29, C8, C3, 90, 8D, B6, 00, 00, 00, 00, 8D, BF, 00, 00, 00, 00, 55, 89, E5, 8B, 45, 08, 83, C0, 48, 89, 45, 08, 8B, 0D, F8, 9D...
 
[+]

Packer / compiler:
MingWin32

Code size:
399 KB (408,576 bytes)

The file elmtviewer.exe has been seen being distributed by the following URL.

http://download.tuxfamily.org/qet/viewer/.../elmtviewer.exe

Scan elmtviewer.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.