How to remove kernelUpdate.exe
- File Details
- Overview
- Analysis
kernelUpdate.exe
The module kernelUpdate.exe has been detected as PUP.Baidu
File Details
Company Name: |
|
MD5: |
b9e3d89c6125c221c65f7364eb896a21 |
Size: |
840 KB |
First Published: |
2017-06-01 03:11:41 (6 years ago) |
Latest Published: |
2018-09-26 03:07:50 (5 years ago) |
Status: |
PUP.Baidu (on last analysis) |
|
Analysis Date: |
2018-09-26 03:07:50 (5 years ago) |
Overview
%sysdrive%\windows.old\users\sylviegeena\appdata\roaming\baidu |
%appdata%\baidu |
Windows 7 |
50.0% |
|
Windows 10 |
25.0% |
|
Windows Server 2008 R2 |
25.0% |
|
Analysis
Subsystem: |
Windows CUI |
PE Type: |
pe |
OS Bitness: |
32 |
Image Base: |
0x00400000 |
Entry Address: |
0x000701a1 |
Name |
Size of data |
MD5 |
.text |
626688 |
09b1dd590ed505e5df231117fe556420 |
.rdata |
147456 |
8cc61b0149da17b844b0b783efa0870a |
.data |
65536 |
bf7cf14fc66ab434b3893ebd4033ea71 |
.tls |
4096 |
620f0b67a91f7f74151bc5be745b7110 |
.rsrc |
4096 |
6652f329eec5577b5bed1e5784feb549 |