Information about kernel.dll.o

kernel.dll.o

File Details

Company Name:

BAIDU.COM
MD5: 47bf959bf5a04ddd8d17c99f73e644cb
Size: 11 MB
First Published: 2017-05-21 05:04:38 (7 years ago)
Latest Published: 2018-11-15 15:10:36 (6 years ago)
Status: Undefined (on last analysis)
Analysis Date: 2018-11-15 15:10:36 (6 years ago)

Overview

Signed By: BeiJing Baidu Netcom Science Technology Co., Ltd
Status: Valid

Common Places:

%temp%\baidu\autoupdate
%appdata%\baidu\baidunetdisk
%appdata%\baidu\baiduyunguanjia
%sysdrive%\$recycle.bin\s-1-5-21-4291336027-1278982574-3203102627-1001\$r0i4bcj\baiduyunguanjia
%localappdata%\temp
%sysdrive%\$recycle.bin\s-1-5-21-3839389404-2096300593-3836268853-1001\$rx7k5ht\autoupdate
%sysdrive%\windows.old\users\jingwei\appdata\local\temp\baidu\autoupdate
%sysdrive%\windows.old\users\user\appdata\roaming\baidu\baiduyunguanjia
%system%\config\systemprofile\appdata\roaming\baidu\baidunetdisk
%sysdrive%\temp\baidu\autoupdate

File Names:

kernel.dll
kernel.dll.o
kernel.dll.quarantined

Geography:

56.6%
19.4%
8.4%
5.4%
3.6%
1.5%
1.5%
0.8%
0.5%
0.5%
0.5%
0.3%
0.3%
0.3%
0.3%
0.3%

OS Version:

Windows 10 57.3%
Windows 7 38.7%
Windows 8.1 3.3%
Windows 8 0.5%
Windows Server 2008 R2 0.3%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x10000000
Entry Address: 0x000e1736

PE Sections:

Name Size of data MD5
.text 1204224 f2208bcb3bd282c3951fe4b9905d1298
.rdata 204800 3af077f5df5bc4e5bc9c0b2fc6e9a625
.data 69632 5452307e5788d9958726b74cc5e017aa
.tls 4096 620f0b67a91f7f74151bc5be745b7110
.rsrc 10371072 75096a9a2f19c1674825d91bf0d3bf9c
.reloc 90112 f40c93ae1bdafa9ff772c7db0c18cb3e

More information:

Search on Virustotal
copyright for information about kernel.dll.o