rainlendar-lite-2.11-32bit.exe

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from www.rainlendar.fr and multiple other hosts.
MD5:
7b19c4a9ef8d35d45166dbacbbfe3227

SHA-1:
2c920b9f588fe2333953eec93db5148affbb6bca

SHA-256:
2916e5d92d1b81d45ab4aab8654ba930d3b66e6066012eb49aa64c250f471d9a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/27/2024 4:25:45 AM UTC  (today)

File size:
14 MB (14,666,324 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Common path:
C:\users\{user}\downloads\rainlendar-lite-2.11-32bit.exe

File PE Metadata
Compilation timestamp:
12/5/2009 5:50:46 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
196608:nCRdbFARVXwKlo02v/fUkd7Ex9iWUx6lLXo8ttvK/n5nu1+g6w0FIqEDiyuTuI4n:MduVXwKlVWfddpUXo8tSu1/0yYT54IUz

Entry address:
0x323C

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 58, 3F, 42, 00, E8, 09, 2C, 00, 00, A3, A4, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 58, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, A0, 36, 42, 00, E8, BC, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, AA, 28, 00, 00...
 
[+]

Entropy:
7.9998

Packer / compiler:
Nullsoft install system v2.x

Code size:
23 KB (23,552 bytes)

The file rainlendar-lite-2.11-32bit.exe has been discovered within the following program.

Rainlendar2 (remove only)  by rainlendar.net
Publisher's description - “Rainlendar is a customizable calendar application which stays out of your way but keeps all your important events and tasks always visible on your desktop. Rainlendar supports events and tasks which both are kept in separate lists.”
www.rainlendar.net/cms/index.php
4% remove it
 
Powered by Should I Remove It?

The file rainlendar-lite-2.11-32bit.exe has been seen being distributed by the following 7 URLs.

http://www.rainlendar.fr/fichier/c10c97540870e29fd2ad0eb16fde1885/57bff68e/.../Rainlendar_2_8436.exe

http://www.rainlendar.fr/fichier/89ff63a11055ba96ed9ae69dfe3a8861/583a84a1/.../Rainlendar_2_8436.exe

Scan rainlendar-lite-2.11-32bit.exe - Powered by Reason Core Security