stormwatchbrowser.exe

Local Weather LLC

Part of an adware web browser extension that delivers advertisements such as coupons, price-comparisons, display media, affiliate links, banners, popups/popunders and other links. The application stormwatchbrowser.exe by Local Weather has been detected as adware by 2 anti-malware scanners. This file is typically installed with the program StormWatch by Local Weather LLC which is a potentially unwanted software program.
Publisher:
Local Weather LLC  (signed and verified)

Version:
1.0.0.20

MD5:
47788b746cc53ba21edf2c4411c0826c

SHA-1:
a0e9e3bb6c297587679f94666b1e4a65669986b8

SHA-256:
2f290fb2f98bc0edd7b0e582cd6917cc45292e505bd54c1b10feebef55fc576d

Scanner detections:
2 / 68

Status:
Adware

Analysis date:
12/24/2024 1:44:56 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.LocalWeather.R
14.9.6.16

VIPRE Antivirus
Threat.4793388
32210

File size:
389.1 KB (398,392 bytes)

Product version:
1.0.0.20

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\stormwatch\stormwatchbrowser.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
10/13/2013 5:00:00 PM

Valid to:
10/14/2014 4:59:59 PM

Subject:
CN=Local Weather LLC, O=Local Weather LLC, STREET="250 Park Ave #504", L=Minneapolis, S=MN, PostalCode=55415, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
1E363E3CA4E0B46A71B002CFAF51DED1

File PE Metadata
Compilation timestamp:
8/8/2014 1:34:34 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:vr788C1ULsp73PJgBNrm36DXX2OlPh0npurlRyAOIANx96Ei:08IfqDi36Tmuh6+RyWex965

Entry address:
0x1F531

Entry point:
E8, 9A, 6A, 00, 00, E9, 89, FE, FF, FF, B8, 15, 6B, 42, 00, A3, B8, 0A, 45, 00, C7, 05, BC, 0A, 45, 00, 0B, 62, 42, 00, C7, 05, C0, 0A, 45, 00, BF, 61, 42, 00, C7, 05, C4, 0A, 45, 00, F8, 61, 42, 00, C7, 05, C8, 0A, 45, 00, 61, 61, 42, 00, A3, CC, 0A, 45, 00, C7, 05, D0, 0A, 45, 00, 8D, 6A, 42, 00, C7, 05, D4, 0A, 45, 00, 7D, 61, 42, 00, C7, 05, D8, 0A, 45, 00, DF, 60, 42, 00, C7, 05, DC, 0A, 45, 00, 6B, 60, 42, 00, C3, 8B, FF, 55, 8B, EC, E8, 96, FF, FF, FF, 83, 7D, 08, 00, 74, 05, E8, AB, 75, 00, 00, DB...
 
[+]

Entropy:
6.0971

Code size:
236.5 KB (242,176 bytes)

The file stormwatchbrowser.exe has been discovered within the following program.

StormWatch  by Local Weather LLC
StormWatch is a potentially unwanted adware program that injects ads into the user's browser. This includes inserting into web pages or displaying ads over parts of existing web page advertisements, banners, coupons or text links that would not otherwise appear.
84% remove it
 
Powered by Should I Remove It?

Remove stormwatchbrowser.exe - Powered by Reason Core Security