How to remove WeatherZero.exe
- File Details
- Overview
- Analysis
WeatherZero.exe
The module WeatherZero.exe has been detected as Backdoor.DCRat
File Details
Product Name: |
|
Company Name: |
|
MD5: |
7dc1c6ab3bf2dd1c825914f7f6f31b45 |
Size: |
2 MB |
First Published: |
2023-08-01 23:09:53 (a year ago) |
Latest Published: |
2024-10-27 23:00:48 (2 weeks ago) |
Status: |
Backdoor.DCRat (on last analysis) |
|
Analysis Date: |
2024-10-27 23:00:48 (2 weeks ago) |
Overview
%programfiles% |
%programfiles% |
%programfiles% |
%programfiles% |
%programfiles% |
%programfiles% |
%programfiles% |
%programfiles% |
%programfiles% |
%programfiles% |
|
30.0% |
|
|
15.0% |
|
|
12.5% |
|
|
10.0% |
|
|
10.0% |
|
|
7.5% |
|
|
5.0% |
|
|
2.5% |
|
|
2.5% |
|
|
2.5% |
|
|
2.5% |
|
Analysis
Subsystem: |
Windows GUI |
PE Type: |
pe |
OS Bitness: |
32 |
Image Base: |
0x00400000 |
Entry Address: |
0x00296336 |
MVID: |
4a248db3-3e5d-4da2-9b4e-5d1b568ae4fd |
Name |
Size of data |
MD5 |
.text |
2704384 |
387cd1e5e61538d08e601d89ca3a884c |
.rsrc |
148480 |
534b8e0116924a981906b8ee000f637d |
.reloc |
512 |
45c095edacd931b3f5ecd3a0d9ebb0a6 |