How to remove krnl.exe
krnl.exe
The module krnl.exe has been detected as Trojan.Agent
File Details
| Product Name: | krnlss |
| MD5: | 9cde54c4eed1e7cb06076784030addd3 |
| Size: | 1 MB |
| First Published: | 2020-11-16 19:29:27 (4 years ago) |
| Latest Published: | 2021-01-11 16:34:30 (4 years ago) |
| Status: | Trojan.Agent (on last analysis) | |
| Analysis Date: | 2021-01-11 16:34:30 (4 years ago) |
Common Places:
| %profile%\downloads\new folder (2) |
| %sysdrive%\$recycle.bin\s-1-5-21-1936799251-2586291672-3224951952-1005 |
| %sysdrive%\$recycle.bin\s-1-5-21-1936799251-2586291672-3224951952-1005 |
| %desktop%\nueva carpeta |
| %profile%\onedrive\desktop\krnl |
| %system% |
| %system% |
| %mydoc%\krnl_bootstrapper\krnl |
| %mydoc%\krnl_bootstrapper |
Geography:
| 37.5% | ||
| 25.0% | ||
| 25.0% | ||
| 12.5% |
OS Version:
| Windows 10 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x001077ee |
.NET Info:
| MVID: | 1d51a737-46c7-4798-aaf1-4373d41d8fff |
| Typelib ID: | 13104ded-97af-473e-b829-b7b0bac3a261 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 1071104 | 82aebdd16691febbd9fb969006c0fca0 |
| .rsrc | 189952 | 8504490e52f436df1d13c22ce1bc387a |
| .reloc | 512 | 8e878f0a793bdb264eb2be78fcbc4b6d |
More information:
Download GridinSoft
Anti-Malware - Removal tool for krnl.exe
