How to remove WeatherZero.exe

WeatherZero.exe

The module WeatherZero.exe has been detected as Backdoor.DCRat

WeatherZero.exe
Remove WeatherZero.exe

File Details

Product Name:

WeatherZero
Company Name:

Weather Zero
MD5: 06d10fe19d41dc9cbbd831fd8317f3c6
Size: 2 MB
First Published: 2022-06-29 23:51:39 (3 years ago)
Latest Published: 2025-04-30 23:01:35 (8 months ago)
Status: Backdoor.DCRat (on last analysis)
Analysis Date: 2025-04-30 23:01:35 (8 months ago)

Overview

Signed By: Reaction Software Limited
Status: Valid

Common Places:

%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%

Geography:

20.0%
13.3%
8.9%
6.7%
4.4%
4.4%
4.4%
4.4%
4.4%
4.4%
4.4%
2.2%
2.2%
2.2%
2.2%
2.2%
2.2%
2.2%
2.2%
2.2%

OS Version:

Windows 10 93.2%
Windows 7 6.8%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x002959b6

.NET Info:

MVID: 4fde1562-88c9-41ab-9b99-5ef327dceb15

PE Sections:

Name Size of data MD5
.text 2701824 05c630e28742d9fc6ae0576914c59bba
.rsrc 148480 5c7b7e7ecc592e9e14860c806c2d28ba
.reloc 512 52049bad38acddce8a6c2111d7bc5888

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for WeatherZero.exe
copyright for information about WeatherZero.exe