home

baixaki_realworld-cursor-editor.exe

Vlastimil Miléř

This is a setup program which is used to install the application. The file has been seen being downloaded from www.ranchsendgift.com.
Publisher:
Vlastimil Miléř  (signed and verified)

MD5:
75f81cd9800189a28185c70c35b08896

SHA-1:
0118771206821632e1b3b5facba1d3b6a401542f

SHA-256:
c4f9eeeeeaebd0e39c77fea7d98344ce7f4fc16315b2c72501682832500a5665

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
7/3/2025 7:46:01 PM UTC  (today)

File size:
7.7 MB (8,047,104 bytes)

File type:
Executable application (Win16 EXE)

Digital Signature
Signed by:
Vlastimil Miléř

Authority:
StartCom Ltd.

Valid from:
8/3/2012 1:48:45 AM

Valid to:
8/4/2014 2:33:09 PM

Subject:
E=vlastimil.miler@rw-designer.com, CN=Vlastimil Miléř, L=Černčice, S=Ustecky Kraj, C=CZ, Description=vDjDuJ8dgSnNv8LH

Issuer:
CN=StartCom Class 2 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
06DE

File PE Metadata
OS version:
873.0

OS bitness:
Win16

CTPH (ssdeep):
196608:4AAXIbqLaQDBLTvhagZGWvT6VjtUxnpFrwJLEzz5/:4AAXXLaWdTpbEWvGVjtUfxwFEPp

Entry address:
0x1C0

Entry point:
D0, CF, 11, E0, A1, B1, 1A, E1, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 3E, 00, 03, 00, FE, FF, 09, 00, 06, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 7B, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 10, 00, 00, 38, 00, 00, 00, 03, 00, 00, 00, CC, 03, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 7A, 00, 00, 00, 7B, 00, 00, 00, 7C, 00, 00, 00, BF, 01, 00, 00, C0, 01, 00, 00, C1, 01, 00, 00, 65, 03, 00, 00, 66, 03, 00, 00, 67, 03, 00, 00, 68, 03, 00, 00, 69, 03, 00, 00, 6A, 03, 00, 00...
 
[+]

Code size:
123 Bytes (123 bytes)

The file baixaki_realworld-cursor-editor.exe has been seen being distributed by the following URL.

http://www.ranchsendgift.com/Q0EB0a3OMdJLKLXEUPYOBj fzstuUR7uH7FpsZP3A_EQl71YQDYl_XWVJgvPdVlRJcX8AE5369B PFEWlBpgCL3qzjthnRdApPonNX8p85P635Hw7h YcUgmknHPCXE_DHjnQOtxEvyo_UM9hmpCvtmH_HUUYXiIzAS9aqbgBS_UBxh_Vv86BWCpgFaG1IQnaT7S08zJSRSmIbPkvysflhl1VWv5g==-GzMAAMTOFhOBEE0oilAU4Wc7_3uYyIFDK8IDwhvbOpA3DjTGp2R4XZH2sAOvvgMVPts=

Scan baixaki_realworld-cursor-editor.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.