wxbuginstaller.exe

WeatherBug

The application wxbuginstaller.exe, “WeatherBug Version 6.0 Install” by WeatherBug has been detected as a potentially unwanted program by 2 anti-malware scanners. The program is a setup application that uses the Wise Installer installer. This file is typically installed with the program WeatherBug Publisher by AWS Convergence Technologies, Inc..
Publisher:
AWS Convergence Technologies, Inc.  (signed by WeatherBug)

Description:
WeatherBug Version 6.0 Install

Version:
6.07.0.21

MD5:
0e585db9b91053733562bc0834214ed3

SHA-1:
642b31caf6450e4cda5bc5e34773bac0431fbb67

SHA-256:
af4aeb753f5c4319c4f7406fda0882d807deadeff3219f9fa37e89fb896e26dd

Scanner detections:
2 / 68

Status:
Potentially unwanted

Explanation:
While not adware or malicious, WeatherBug is typically bundled with various 3rd-party download managers as an offer which might be potentailly unwanted.

Analysis date:
12/24/2024 1:04:50 PM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
infected with Trojan.Siggen1.63573
9.0.1.05190

Reason Heuristics
PUP.Installer.WeatherBug
15.1.17.19

File size:
2.8 MB (2,938,960 bytes)

Copyright:
2006

File type:
Executable application (Win32 EXE)

Installer:
Wise Installer

Language:
English (United States)

Common path:
C:\Program Files\aws\aws\pwspub\wxbuginstaller.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
6/4/2006 5:00:00 PM

Valid to:
6/30/2009 4:59:59 PM

Subject:
CN=WeatherBug, OU=Consumer, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=WeatherBug, L=Gaithersburg, S=Maryland, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
37BA9A6E807E4CC566D9E69FE45E7EB7

File PE Metadata
Compilation timestamp:
4/8/1999 1:24:47 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:YajFAUZRbuTUHQKUJjBLbgmCJYMpckrPtaUL5foJz1zDgpGcFo:YuFrZ4KAFLbgmCTGNufoa

Entry address:
0x1000

Entry point:
55, 8B, EC, 81, EC, 78, 05, 00, 00, 53, 56, BE, 04, 01, 00, 00, 57, 8D, 85, 94, FD, FF, FF, 56, 33, DB, 50, 53, FF, 15, 34, 20, 40, 00, 8D, 85, 94, FD, FF, FF, 56, 50, 8D, 85, 94, FD, FF, FF, 50, FF, 15, 30, 20, 40, 00, 8B, 3D, 2C, 20, 40, 00, 53, 53, 6A, 03, 53, 6A, 01, 8D, 85, 94, FD, FF, FF, 68, 00, 00, 00, 80, 50, FF, D7, 83, F8, FF, 89, 45, FC, 0F, 84, 7B, 01, 00, 00, 8D, 85, 90, FC, FF, FF, 50, 56, FF, 15, 28, 20, 40, 00, 8D, 85, 98, FE, FF, FF, 50, 53, 8D, 85, 90, FC, FF, FF, 68, 10, 30, 40, 00, 50...
 
[+]

Entropy:
7.9981

Packer / compiler:
Wise Installer Stub

Code size:
512 Bytes (512 bytes)

The file wxbuginstaller.exe has been discovered within the following program.

WeatherBug Publisher  by AWS Convergence Technologies, Inc.
Publisher's description - “Download WeatherBug to access the world’s largest network of real-time weather and lightning sensors for the best forecasts, the fastest alerts and more. The most accurate current, extended and hourly weather forecasts for your neighborhood and millions of cities worldwide.”
www.weatherbug.com/support
49% remove it
 
Powered by Should I Remove It?

Remove wxbuginstaller.exe - Powered by Reason Core Security