How to remove WeatherZero.exe

WeatherZero.exe

The module WeatherZero.exe has been detected as Backdoor.DCRat

WeatherZero.exe
Remove WeatherZero.exe

File Details

Product Name:

WeatherZero
Company Name:

Weather Zero
MD5: 06d10fe19d41dc9cbbd831fd8317f3c6
Size: 2 MB
First Published: 2022-06-29 23:51:39 (2 years ago)
Latest Published: 2024-12-16 23:01:15 (5 days ago)
Status: Backdoor.DCRat (on last analysis)
Analysis Date: 2024-12-16 23:01:15 (5 days ago)

Overview

Signed By: Reaction Software Limited
Status: Valid

Common Places:

%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%

Geography:

17.5%
15.0%
10.0%
7.5%
5.0%
5.0%
5.0%
5.0%
5.0%
5.0%
2.5%
2.5%
2.5%
2.5%
2.5%
2.5%
2.5%
2.5%

OS Version:

Windows 10 92.3%
Windows 7 7.7%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x002959b6

.NET Info:

MVID: 4fde1562-88c9-41ab-9b99-5ef327dceb15

PE Sections:

Name Size of data MD5
.text 2701824 05c630e28742d9fc6ae0576914c59bba
.rsrc 148480 5c7b7e7ecc592e9e14860c806c2d28ba
.reloc 512 52049bad38acddce8a6c2111d7bc5888

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for WeatherZero.exe
copyright for information about WeatherZero.exe