How to remove kernelupdate.exe
- File Details
- Overview
- Analysis
kernelupdate.exe
The module kernelupdate.exe has been detected as PUP.Baidu
File Details
Company Name: |
|
MD5: |
dd5d8b40669aa3cab2263fb80bcb8bc1 |
Size: |
2 MB |
First Published: |
2017-09-12 14:09:42 (6 years ago) |
Latest Published: |
2024-01-18 23:21:15 (2 months ago) |
Status: |
PUP.Baidu (on last analysis) |
|
Analysis Date: |
2024-01-18 23:21:15 (2 months ago) |
Overview
%appdata%\baidu\baidunetdisk |
%appdata%\baidu\baiduyunguanjia |
%temp%\baidu\autoupdate |
%appdata%\baidu |
%sysdrive%\windows.old\users\keisuke9181\appdata\local\temp\baidu |
%temp%\baidu |
%programfiles% |
%sysdrive%\baidu |
%sysdrive%\百度 |
%sysdrive% |
kernelUpdate.exe |
kernelupdate.exe |
$RKPEODK.exe |
$RBLJWIW.exe |
kernelUpdate (2018_05_31 15_56_41 UTC).exe |
|
46.9% |
|
|
18.6% |
|
|
13.6% |
|
|
6.8% |
|
|
2.6% |
|
|
2.4% |
|
|
2.0% |
|
|
1.2% |
|
|
0.9% |
|
|
0.8% |
|
|
0.5% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.2% |
|
|
0.2% |
|
|
0.2% |
|
|
0.1% |
|
|
0.1% |
|
Windows 10 |
64.7% |
|
Windows 7 |
24.5% |
|
Windows 8.1 |
8.8% |
|
Windows Server 2012 R2 |
0.5% |
|
Windows 8 |
0.4% |
|
Windows Server 2008 R2 |
0.3% |
|
Windows Server 2012 |
0.3% |
|
Windows XP |
0.2% |
|
Windows Server 2016 |
0.1% |
|
Windows Server 2003 |
0.1% |
|
Analysis
Subsystem: |
Windows CUI |
PE Type: |
pe |
OS Bitness: |
32 |
Image Base: |
0x00400000 |
Entry Address: |
0x001cd15f |
Name |
Size of data |
MD5 |
.text |
2150912 |
ea45a0818cad515b36ed3e1b6e2e6c05 |
.rdata |
482816 |
582b5189c167b9bf9f2dc8c0c9f98d89 |
.data |
60928 |
73a43c389bd7365e69ffe04f6cb73ba3 |
.gfids |
2048 |
36c19f950c200297570430b9de904e4e |
.tls |
512 |
1f354d76203061bfdd5a53dae48d5435 |
.rsrc |
1536 |
6a53be75b5b38746867cb16ab58ba18a |
.reloc |
95232 |
7c4410543c5bacaf377910fb6573e7f5 |