How to remove kernel.dll.o
- File Details
- Overview
- Analysis
kernel.dll.o
The module kernel.dll.o has been detected as PUP.Baidu
File Details
| Company Name: |
|
| MD5: |
1cf91ed78b408ff0c171bc85b2bf52ae |
| Size: |
11 MB |
| First Published: |
2017-05-21 20:03:43 (6 years ago) |
| Latest Published: |
2019-06-20 03:25:58 (4 years ago) |
| Status: |
PUP.Baidu (on last analysis) |
|
| Analysis Date: |
2019-06-20 03:25:58 (4 years ago) |
Overview
| %appdata%\baidu\baiduyunguanjia |
| %appdata%\baidu\baidunetdisk |
| %sysdrive%\1programexe\3web-net-down |
| %appdata%\baidu |
| %sysdrive%\小u盘软件 |
| %programfiles% |
| %sysdrive%\4k |
| %sysdrive%\downloads\百度云 |
| %profile%\downloads\run_prog\cloud\baidunetdisk 5.5.2 kor\baidunetdisk\%appdata%\baidu |
| %profile%\downloads\baiduyunquxiansu |
|
53.6% |
|
|
13.0% |
|
|
10.1% |
|
|
5.8% |
|
|
4.3% |
|
|
4.3% |
|
|
1.4% |
|
|
1.4% |
|
|
1.4% |
|
|
1.4% |
|
|
1.4% |
|
|
1.4% |
|
| Windows 10 |
55.1% |
|
| Windows 7 |
39.1% |
|
| Windows 8.1 |
5.8% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x10000000 |
| Entry Address: |
0x000e1ba6 |
| Name |
Size of data |
MD5 |
| .text |
1204224 |
f52d6cf62dea7fdf366d86707e8d0b96 |
| .rdata |
204800 |
bbac124123b9033460be28e0f71abd7c |
| .data |
69632 |
d1baac8baa917b1e236caa5182fb7690 |
| .tls |
4096 |
620f0b67a91f7f74151bc5be745b7110 |
| .rsrc |
10047488 |
efedf2224c1ff123c096f01a2b719e09 |
| .reloc |
90112 |
65b76515bc07ecd8f93533aa28a8cb2f |
