home

weathereyedownloader.exe

WeatherEyeDownloader

The Weather Network

Publisher:
Pelmorex Media Inc.  (signed by The Weather Network)

Product:
WeatherEyeDownloader

Description:
The WeatherEye Downloader

Version:
1.0.0.15

MD5:
f72f87efdbddfb6f5437e08482a446c9

SHA-1:
384549e90134eca8e3b19a4aa6d1a7903a36c567

SHA-256:
5c9ffcd2886bc147431843e0819835530407dfdd769d9300277a0477c889512c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
7/15/2025 10:22:17 AM UTC  (today)

File size:
1006.2 KB (1,030,368 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © Pelmorex 2009

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\weathereye\weathereyedownloader.exe

Digital Signature
Signed by:
The Weather Network

Authority:
VeriSign, Inc.

Valid from:
7/28/2014 5:30:00 AM

Valid to:
10/27/2017 5:29:59 AM

Subject:
CN=The Weather Network, OU=Network Operations, O=The Weather Network, L=Oakville, S=Ontario, C=CA

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7ED147F25C3BE7C7CB03F084C02780DF

File PE Metadata
Compilation timestamp:
6/20/1992 3:52:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:/Yf4F7SARBCX4vrVd6adokFCjPZeEP5Mn4dYtEIhwTP3X:/44hSCBC02kI8OSEIqf

Entry address:
0xCE2B8

Entry point:
55, 8B, EC, 83, C4, F0, B8, 20, DD, 4C, 00, E8, 90, 8D, F3, FF, A1, 64, 23, 4D, 00, 8B, 00, C6, 40, 5B, 00, A1, 64, 23, 4D, 00, 8B, 00, E8, 65, B6, F9, FF, A1, 64, 23, 4D, 00, 8B, 00, 33, D2, E8, 3F, B2, F9, FF, 8B, 0D, 74, 1F, 4D, 00, A1, 64, 23, 4D, 00, 8B, 00, 8B, 15, 38, B8, 4C, 00, E8, 57, B6, F9, FF, A1, 64, 23, 4D, 00, 8B, 00, E8, CB, B6, F9, FF, E8, A2, 67, F3, FF, 8B, C0, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.6280

Developed / compiled with:
Microsoft Visual C++

Code size:
821 KB (840,704 bytes)

Scan weathereyedownloader.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.