Information about rundll32.exb

rundll32.exb

File Details

Product Name:

Microsoft® Windows® Operating System
Company Name:

Microsoft Corporation
MD5: 3a6209ac494296c24c2065cb4392b5f4
Size: 50 KB
First Published: 2017-05-21 03:02:11 (6 years ago)
Latest Published: 2024-03-26 23:06:59 (2 months ago)
Status: Undefined (on last analysis)
Analysis Date: 2024-03-26 23:06:59 (2 months ago)

Common Places:

%windir%\system32
%sysdrive%\zv\noexp\files
%commonappdata%\net protector\nposfile\2017-03-01_1332\files
%system%
%system%
%system%
%system%
%system%
%system%
%system%

File Names:

rundll32.exe
rundll32.exb
Rundll32.exe
RunDll32.exe

Geography:

15.3%
11.8%
8.4%
7.2%
5.8%
4.3%
4.3%
3.2%
2.6%
2.6%
2.3%
2.0%
1.7%
1.7%
1.7%
1.7%
1.4%
1.4%
1.4%
1.2%
1.2%
1.2%
1.2%
1.2%
1.2%
0.9%
0.9%
0.9%
0.9%
0.9%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.6%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%

OS Version:

Windows 8 89.9%
Windows Server 2012 10.1%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000140000000
Entry Address: 0x00003e14

PE Sections:

Name Size of data MD5
.text 17408 4161da3d5866353e1bc1d7c959455880
.data 512 d2e118408beb90f34f783e61ebaecb66
.pdata 1024 89d9e94ba59799132709b05c11701a67
.idata 4096 f18915324e6c0eb03b6fd5b313a0a759
minATL 512 b58be67d49ec6cec7b97095a8fb20b11
.rsrc 26624 e7c3a244b12c96084116fd043ea7c466
.reloc 512 7dbc9b4ef1fb720fed2e4100e50eee3b

More information:

Search on Virustotal
copyright for information about rundll32.exb