Information about svchost.exb

svchost.exb

File Details

Product Name:

Microsoft® Windows® Operating System
Company Name:

Microsoft Corporation
MD5: c78655bc80301d76ed4fef1c1ea40a7d
Size: 26 KB
First Published: 2017-05-21 03:01:54 (6 years ago)
Latest Published: 2023-10-24 23:56:54 (6 months ago)
Status: Undefined (on last analysis)
Analysis Date: 2023-10-24 23:56:54 (6 months ago)

Common Places:

%windir%\system32
%sysdrive%\zv\noexp\files
%commonappdata%\net protector\nposfile\2017-05-21_0653\files
%commonappdata%\net protector\nposfile\2016-12-01_1553\files
%localappdata%\temp
%commonappdata%\net protector\nposfile\2017-06-16_1933\files
%commonappdata%\net protector\nposfile\2017-06-04_1334\files
%commonappdata%\net protector\nposfile\2017-07-23_2025\files
%windir%\system
%commonappdata%\net protector\nposfile\2016-07-15_1526\files

File Names:

svchost.exe
svchost.exb
619652b42afe5fb0e3719d7aeda7a5494ab193e8.img
rundll32.exe
pagefile.pif
mssecsvc.exe
dllhost.exe
TrustedInstaller.exe
winsvc.exe

Geography:

16.2%
10.3%
8.6%
8.5%
7.4%
7.4%
4.9%
3.9%
3.2%
2.9%
2.7%
2.5%
2.2%
1.5%
1.4%
1.1%
0.9%
0.9%
0.7%
0.6%
0.6%
0.6%
0.5%
0.5%
0.5%
0.5%
0.4%
0.4%
0.4%
0.4%
0.4%
0.4%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.2%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%
0.1%

OS Version:

Windows 7 99.2%
Windows Server 2008 R2 0.6%
Windows Vista 0.2%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000100000000
Entry Address: 0x0000246c

PE Sections:

Name Size of data MD5
.text 12800 a5d51d8266ac363ac43921f45afd7e70
.rdata 6144 8785522f37f340d978360f22d651c48d
.data 2560 f20f9844549add4c7210e7fe17c47f98
.pdata 1024 82e2277eaf2b75cd21e4bee60238c673
.rsrc 2560 fd66bade4e1076856bea524ff72b9017
.reloc 512 84941b36ea25cd8263a272ae576a7e92

More information:

Search on Virustotal
copyright for information about svchost.exb