trial.exe

Severe Weather Alerts

Weather Notifications LLC

Part of an adware web browser extension that delivers advertisements such as coupons, price-comparisons, display media, affiliate links, banners, popups/popunders and other links. The application trial.exe, “Offer - Severe Weather Alerts” by Weather Notifications has been detected as adware by 2 anti-malware scanners. This file is typically installed with the program Severe Weather Alerts by Weather Notifications, LLC which is a potentially unwanted software program.
Publisher:
Weather Notifications, LLC  (signed by Weather Notifications LLC)

Product:
Severe Weather Alerts

Description:
Offer - Severe Weather Alerts

Version:
1.3.0.0

MD5:
61803fb4a1f3526b609aa2c5406554c4

SHA-1:
d8c51f5f73e9181b137658d840f098167121c173

SHA-256:
29d717889a703b9090e9f19dd23fbbc851107115ad9873c8662e9c6ea9fbe70a

Scanner detections:
2 / 68

Status:
Adware

Analysis date:
12/24/2024 12:06:12 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.WeatherNotifications.F
14.9.29.5

VIPRE Antivirus
Threat.4793388
33120

File size:
62.2 KB (63,672 bytes)

Product version:
1.3.0.0

Copyright:
Copyright © 2013. All Rights Reserved.

Original file name:
trial.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\severeweatheralerts\trial.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
6/14/2013 10:00:00 AM

Valid to:
6/15/2014 9:59:59 AM

Subject:
CN=Weather Notifications LLC, O=Weather Notifications LLC, STREET=250 Park Ave Ste 504, L=Minneapolis, S=MN, PostalCode=55415, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
0D57C9460FE0C441B8FDD693F1AC6CD7

File PE Metadata
Compilation timestamp:
9/24/2013 6:44:43 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
384:0KJLBYvP96uuUEdi/BwYzI2KDCcpLWly7xdsD/zAAqFXIZRCxMMC187IHy9f:9diJdzk+PlySqFXImxh7oef

Entry address:
0xCB2E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
3.3347

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
44 KB (45,056 bytes)

The file trial.exe has been discovered within the following program.

Severe Weather Alerts  by Weather Notifications, LLC
Some versions of the Weather Notifications software bundles various potentially unwanted software such as toolbar and web browser extensions using the Tuguu DomalQ download manager.
www.severeweatheralerts.net
87% remove it
 
Powered by Should I Remove It?

Remove trial.exe - Powered by Reason Core Security