How to remove WeatherZero.exe
- File Details
- Overview
- Analysis
WeatherZero.exe
The module WeatherZero.exe has been detected as Backdoor.DCRat
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
7dc1c6ab3bf2dd1c825914f7f6f31b45 |
| Size: |
2 MB |
| First Published: |
2023-08-01 23:09:53 (2 years ago) |
| Latest Published: |
2025-12-13 23:00:18 (a week ago) |
| Status: |
Backdoor.DCRat (on last analysis) |
|
| Analysis Date: |
2025-12-13 23:00:18 (a week ago) |
Overview
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
|
17.9% |
|
|
13.0% |
|
|
13.0% |
|
|
8.9% |
|
|
7.3% |
|
|
7.3% |
|
|
7.3% |
|
|
5.7% |
|
|
4.1% |
|
|
3.3% |
|
|
3.3% |
|
|
3.3% |
|
|
2.4% |
|
|
1.6% |
|
|
0.8% |
|
|
0.8% |
|
| Windows 10 |
98.4% |
|
| Windows 8.1 |
1.6% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00296336 |
| MVID: |
4a248db3-3e5d-4da2-9b4e-5d1b568ae4fd |
| Name |
Size of data |
MD5 |
| .text |
2704384 |
387cd1e5e61538d08e601d89ca3a884c |
| .rsrc |
148480 |
534b8e0116924a981906b8ee000f637d |
| .reloc |
512 |
45c095edacd931b3f5ecd3a0d9ebb0a6 |
