How to remove krnl.dll

krnl.dll

The module krnl.dll has been detected as Trojan.Conteban

krnl.dll
Remove krnl.dll

File Details

MD5: 77c89a25c695d4125e7eb6250674c93b
Size: 7 MB
First Published: 2023-01-14 23:28:46 (3 years ago)
Latest Published: 2023-10-28 23:59:01 (2 years ago)
Status: Trojan.Conteban (on last analysis)
Analysis Date: 2023-10-28 23:59:01 (2 years ago)

Overview

Signed By: 1305119 B.C. Ltd
Status: Valid

Common Places:

%profile%\onedrive\escritorio\não sei
%sysdrive%\$recycle.bin\s-1-5-21-2238999902-610573748-695559636-1001\$rb01jjt.zip
%sysdrive%\$recycle.bin\s-1-5-21-2238999902-610573748-695559636-1001\$rj0hwjc.zip
%sysdrive%\$recycle.bin\s-1-5-21-2238999902-610573748-695559636-1001\$rbrfwjr.zip
%sysdrive%\$recycle.bin\s-1-5-21-2238999902-610573748-695559636-1001\$r4b1pch.zip
%sysdrive%\$recycle.bin\s-1-5-21-2238999902-610573748-695559636-1001\$rkqgrgg.zip
%sysdrive%\$recycle.bin\s-1-5-21-2238999902-610573748-695559636-1001\$rjbuxk0.zip
%sysdrive%\$recycle.bin\s-1-5-21-2238999902-610573748-695559636-1001\$rjhq3wn.zip
%sysdrive%\$recycle.bin\s-1-5-21-2238999902-610573748-695559636-1001\$rdsc8wp.zip
%sysdrive%\$recycle.bin\s-1-5-21-2238999902-610573748-695559636-1001\$rqufg2j.zip

Geography:

92.3%
7.7%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x10000000
Entry Address: 0x00ca0188

PE Sections:

Name Size of data MD5
.text 0 d41d8cd98f00b204e9800998ecf8427e
.rdata 0 d41d8cd98f00b204e9800998ecf8427e
.data 0 d41d8cd98f00b204e9800998ecf8427e
.detourc 0 d41d8cd98f00b204e9800998ecf8427e
.detourd 0 d41d8cd98f00b204e9800998ecf8427e
.km30 0 d41d8cd98f00b204e9800998ecf8427e
.km31 7575040 1b4ee16d6726ac1d0d9b11618fd78c38
.reloc 2048 9bee9a8316f8367df7a3af912da94037
.rsrc 512 eea35b6b83beb92ec5c84499419f7899

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for krnl.dll
copyright for information about krnl.dll