DesktopWeatherAlertsApp.exe

DesktopWeatherAlertsApp

Local Weather LLC

Part of an adware web browser extension that delivers advertisements such as coupons, price-comparisons, display media, affiliate links, banners, popups/popunders and other links. The application DesktopWeatherAlertsApp.exe by Local Weather has been detected as adware by 7 anti-malware scanners.
Publisher:
Local Weather LLC  (signed and verified)

Product:
DesktopWeatherAlertsApp

Version:
1.0.29.0

MD5:
ef8361b04b5697fa79c19cbaf1120f8a

SHA-1:
b3f26242794101a5cadb0db10c9c9ff28b82da0f

SHA-256:
06f66320e6c8576d4de6f66740534e26286abc1e631437105328874cdc58a51d

Scanner detections:
7 / 68

Status:
Adware

Analysis date:
11/23/2024 8:14:19 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Crypt-SKC [Trj]
160518-2

ESET NOD32
MSIL/Adware.StrongVault.A application
8.0.319.0

F-Prot
W32/Neshta.A!Generic
4.6.5.141

McAfee
Virus.W32/HLLP.41472
18.0.204.0

Microsoft Security Essentials
Threat.Undefined
1.223.2949.0

Reason Heuristics
PUP.Weather.LocalWea (M)
16.6.30.4

VIPRE Antivirus
Threat.4297522
50318

File size:
902.5 KB (924,200 bytes)

Product version:
1.0.29.0

Original file name:
DesktopWeatherAlertsApp.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\desktopweatheralertsapp.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
10/14/2013 12:00:00 AM

Valid to:
10/14/2014 11:59:59 PM

Subject:
CN=Local Weather LLC, O=Local Weather LLC, STREET="250 Park Ave #504", L=Minneapolis, S=MN, PostalCode=55415, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
1E363E3CA4E0B46A71B002CFAF51DED1

File PE Metadata
Compilation timestamp:
2/25/2014 4:00:19 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
6144:j9oIDP8+FwOxYvG/dozothUHoNXnWSCnYXt000G:BD0+ldozothscRCnYXt000G

Entry address:
0x6BBBB

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 04, 00, 03, 00, 00, 00, 30, 00, 00, 80, 0E, 00, 00, 00, E2, AB, 01, 80, 10, 00, 00, 00, 78, AC, 01, 80, 18, 00, 00, 00, BC, AF, 01, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
4.7036

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
423 KB (433,152 bytes)

User Start Menu Item
Name:
DesktopWeatherAlertsApp.exe


Remove DesktopWeatherAlertsApp.exe - Powered by Reason Core Security