rainlendar-lite-2.6.exe

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from www.rainlendar.net.
MD5:
0e3e26e8e3d8c68bff736f1118864a08

SHA-1:
d069276be988efd4d799bd21a616d19e43b0474b

SHA-256:
6fb43a5aa94f3789c49a4c76f195eb5ee20e44f6ef5cb8d39486536b0e7e956d

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/27/2024 4:27:05 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Malware.XPACK/RDM!5.1
23.00.65.14513

File size:
4.5 MB (4,752,253 bytes)

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Common path:
C:\users\{user}\downloads\rainlendar-lite-2.6.exe

File PE Metadata
Compilation timestamp:
12/20/2008 1:41:03 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:8PkS0XPQeYu4VqflofmGXGnN0IkRf5CIkiczeEvnpt1NIsL:8X0XPQekclofwnN0IifdkjeEhxIE

Entry address:
0x3233

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 58, 3F, 42, 00, E8, 02, 2C, 00, 00, A3, A4, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 58, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, A0, 36, 42, 00, E8, B9, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, A7, 28, 00, 00...
 
[+]

Packer / compiler:
Nullsoft install system v2.x

Code size:
23 KB (23,552 bytes)

The file rainlendar-lite-2.6.exe has been discovered within the following program.

Rainlendar2 (remove only)  by rainlendar.net
Publisher's description - “Rainlendar is a customizable calendar application which stays out of your way but keeps all your important events and tasks always visible on your desktop. Rainlendar supports events and tasks which both are kept in separate lists.”
www.rainlendar.net/cms/index.php
4% remove it
 
Powered by Should I Remove It?

The file rainlendar-lite-2.6.exe has been seen being distributed by the following URL.

Scan rainlendar-lite-2.6.exe - Powered by Reason Core Security