How to remove wzupdate.exe

wzupdate.exe

The module wzupdate.exe has been detected as Backdoor.DCRat

wzupdate.exe
Remove wzupdate.exe

File Details

Product Name:

WeatherZero
MD5: fb5c046a61f238b7248f2d5b29cf9962
Size: 10 MB
First Published: 2024-08-08 23:00:54 (5 months ago)
Latest Published: 2024-09-02 23:00:52 (4 months ago)
Status: Backdoor.DCRat (on last analysis)
Analysis Date: 2024-09-02 23:00:52 (4 months ago)

Overview

Signed By: Sanem Digital Limited
Status: Valid

Common Places:

%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%
%programfiles%

Geography:

100.0%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x0103b058

PE Sections:

Name Size of data MD5
19456 11675664120919917a8c67813c07930a
1536 be19e3ebf835f5acb8c2b85d9493f6c5
512 57f5e5f7c70be2d6b24b270a3af8c079
.ndata 0 d41d8cd98f00b204e9800998ecf8427e
8602112 ca62bc38e4e4c1529398745bc3fc49df
.idata 512 c904d96abe1e0e61461c980c598441ef
.rsrc 148480 f1dcc479e4a23c66fa84ae26e3de11c0
.themida 0 d41d8cd98f00b204e9800998ecf8427e
.boot 2481152 38d3d95e4c0432654aa6e96f5bcba49b
32768 0e4fc8b52487604ee02f1a1833eea43f

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for wzupdate.exe
copyright for information about wzupdate.exe