How to remove WeatherZero.exe
- File Details
- Overview
- Analysis
WeatherZero.exe
The module WeatherZero.exe has been detected as Backdoor.DCRat
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
7dc1c6ab3bf2dd1c825914f7f6f31b45 |
| Size: |
2 MB |
| First Published: |
2023-08-01 23:09:53 (2 years ago) |
| Latest Published: |
2025-11-19 23:02:33 (5 days ago) |
| Status: |
Backdoor.DCRat (on last analysis) |
|
| Analysis Date: |
2025-11-19 23:02:33 (5 days ago) |
Overview
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
| %programfiles% |
|
18.3% |
|
|
13.3% |
|
|
13.3% |
|
|
9.2% |
|
|
7.5% |
|
|
7.5% |
|
|
6.7% |
|
|
5.8% |
|
|
3.3% |
|
|
3.3% |
|
|
3.3% |
|
|
2.5% |
|
|
2.5% |
|
|
1.7% |
|
|
0.8% |
|
|
0.8% |
|
| Windows 10 |
98.3% |
|
| Windows 8.1 |
1.7% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00296336 |
| MVID: |
4a248db3-3e5d-4da2-9b4e-5d1b568ae4fd |
| Name |
Size of data |
MD5 |
| .text |
2704384 |
387cd1e5e61538d08e601d89ca3a884c |
| .rsrc |
148480 |
534b8e0116924a981906b8ee000f637d |
| .reloc |
512 |
45c095edacd931b3f5ecd3a0d9ebb0a6 |
