How to remove WeatherZero.exe
- File Details
- Overview
- Analysis
WeatherZero.exe
The module WeatherZero.exe has been detected as Backdoor.DCRat
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
06d10fe19d41dc9cbbd831fd8317f3c6 |
| Size: |
2 MB |
| First Published: |
2022-06-29 23:51:39 (2 years ago) |
| Latest Published: |
2024-08-25 23:07:43 (3 weeks ago) |
| Status: |
Backdoor.DCRat (on last analysis) |
|
| Analysis Date: |
2024-08-25 23:07:43 (3 weeks ago) |
Overview
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
|
17.1% |
|
|
11.4% |
|
|
11.4% |
|
|
8.6% |
|
|
5.7% |
|
|
5.7% |
|
|
5.7% |
|
|
5.7% |
|
|
5.7% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
|
2.9% |
|
| Windows 10 |
91.2% |
|
| Windows 7 |
8.8% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x002959b6 |
| MVID: |
4fde1562-88c9-41ab-9b99-5ef327dceb15 |
| Name |
Size of data |
MD5 |
| .text |
2701824 |
05c630e28742d9fc6ae0576914c59bba |
| .rsrc |
148480 |
5c7b7e7ecc592e9e14860c806c2d28ba |
| .reloc |
512 |
52049bad38acddce8a6c2111d7bc5888 |
