Gridinsoft Logo
File Icon

The WeatherZero.exe (WeatherZero) File Analysis

Updated 3 days ago
Checked by Malware Check
WeatherZero.exe

Technical Analysis

File Name WeatherZero.exe
File Type
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
Scanner Version 1.0.222.174
Database Version 2025-07-29 21:00:14 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
2,876,688
File Size (bytes)
2025-07-29
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
7dc1c6ab3bf2dd1c825914f7f6f31b45
SHA1
50da5df89a759dd1d6f123b98b8aa35298699b3b
SHA256
9b92a8f962d7f8ffc9a06bafecaff854d88999107641229b17b68d5532e6e17c
SHA512
695ffac94223f5419229d84c5e46baca22c9ac5c57e27b87cde347a80f343926a529f9ea008390053f7306e8140d421fcbe7789d636b2e489c089f0cb7b7f752
ImpHash
f34d5f2d4577ed6d9ceec516c1f5a744

PE Analysis

Basic Information

Icon
Hash: 2fc83c69cf24f196fd7341bf0d1936f8
Fuzzy: 08ff99ce15e012a18d4bf76aef327a9e
dHash: 2351313cd8584123
Image Base 0x00400000
Entry Point 0x00696336
Compilation Time 2022-07-15 16:50:13
Checksum 0x002ca663 (Actual: 0x002ca663)
OS Version 4.0
PEiD Signatures PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
PDB Path d:\Code\weatherzero\WeatherZero\WeatherZero\obj\Release\Weather.Zero.pdb
Digital Signature OK
Imports 1 libraries
mscoree
Exports 0 functions
Resources 14 Resources
Sections 3 Sections

Version Information

Translation 0x0000 0x04b0
Comments
CompanyName Weather Zero
FileDescription WeatherZero
FileVersion 1.0.0.0
InternalName Weather.Zero.exe
LegalCopyright Copyright Weather Zero © 2022
LegalTrademarks
OriginalFilename Weather.Zero.exe
ProductName WeatherZero
ProductVersion 1.0.0.0
Assembly Version 1.0.0.0

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00002000 2,704,188 bytes 2,704,384 bytes 7.96 (Packed/Encrypted) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 387CD1E5E61538D08E601D89CA3A884C
.rsrc 0x00298000 148,348 bytes 148,480 bytes 6.27 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 534B8E0116924A981906B8EE000F637D
.reloc 0x002be000 12 bytes 512 bytes 0.10 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 45C095EDACD931B3F5ECD3A0D9EBB0A6
Entropy Analysis Alert

1 section(s) with high entropy (≥7.5) detected - possible packing/encryption

Resource Analysis

Total Resources: 14 (147,558 bytes)
Resource Type Count Total Size Percentage
RT_ICON 11 146,040 bytes
99%
RT_GROUP_ICON 1 160 bytes
0.1%
RT_VERSION 1 868 bytes
0.6%
RT_MANIFEST 1 490 bytes
0.3%

Certificate Chain Analysis

Certificate Information
Product WeatherZero
Description WeatherZero
File Version 1.0.0.0
Original Name Weather.Zero.exe
Signing Date 04:50 PM 07/15/2022 (1113 days ago)
Verification Status Signed
Signers Reaction Software Limited; Sectigo Public Code Signing CA R36; Sectigo Public Code Signing Root R46; Sectigo (AAA)
Counter Signers DigiCert Timestamp 2022 - 2; DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA; DigiCert Trusted Root G4; DigiCert
Internal Name Weather.Zero.exe
Copyright Copyright Weather Zero © 2022

✓ This file has been digitally signed and the certificate chain has been verified

  • The signature ensures file integrity and authenticity from the publisher
  • Timestamping proves when the signature was applied
Certificate Verification Status

OK

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware