How to remove wzupdate.exe

» File
File Details
Overview
Analysis

wzupdate.exe

The module wzupdate.exe has been detected as Backdoor.DCRat

wzupdate.exe

Remove wzupdate.exe

File Details

Main Info:

Product Name:	WeatherZero
MD5:	1602e60604f668f7d6f3fab248c5cd62
Size:	10 MB
First Published:	2025-01-02 23:01:37 (10 months ago)
Latest Published:	2025-11-02 23:01:38 (3 days ago)

Analysis:

Status:	Backdoor.DCRat (on last analysis)
Analysis Date:	2025-11-02 23:01:38 (3 days ago)

Overview

Digital Signature

Signed By:	Sanem Digital Limited
Status:	Valid

Common Places:

%programfiles%

%programfiles%

%programfiles%

%programfiles%

%programfiles%

Geography:

	60.0%
	40.0%

OS Version:

Windows 10

100.0%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x0103a058

PE Sections:

Name	Size of data	MD5
	19456	9e5d839559d5d0779d86f392039d9cbe
	1536	293268ea61cf94134fe11dd5df4b9188
	512	0a6f16b3cd5841f001081c418c1da395
.ndata	0	d41d8cd98f00b204e9800998ecf8427e
	8601600	99702842afcd4dea7f12bebfd0195bb9
.idata	512	416682ef238eb57b344aeca1a0d1d0cc
.rsrc	148480	b64981d67cdf9fd7456df23185b8a6f2
.themida	0	d41d8cd98f00b204e9800998ecf8427e
.boot	2532352	58852166d723473050444b9432f6a6e0
	32768	0e4fc8b52487604ee02f1a1833eea43f

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for wzupdate.exe

copyright for information about wzupdate.exe