Information about rundll32.exb

rundll32.exb

File Details

Product Name:

Microsoft® Windows® Operating System
Company Name:

Microsoft Corporation
MD5: 3a6209ac494296c24c2065cb4392b5f4
Size: 50 KB
First Published: 2017-05-21 03:02:11 (8 years ago)
Latest Published: 2024-12-10 23:01:53 (11 months ago)
Status: Undefined (on last analysis)
Analysis Date: 2024-12-10 23:01:53 (11 months ago)

Common Places:

%windir%\system32
%sysdrive%\zv\noexp\files
%commonappdata%\net protector\nposfile\2017-03-01_1332\files
%system%
%system%
%system%
%system%
%system%
%system%
%system%

File Names:

rundll32.exe
rundll32.exb
Rundll32.exe
RunDll32.exe

Geography:

14.2%
11.0%
9.1%
7.8%
6.7%
5.4%
4.0%
4.0%
3.0%
2.4%
2.2%
1.9%
1.6%
1.6%
1.6%
1.6%
1.3%
1.3%
1.3%
1.1%
1.1%
1.1%
1.1%
1.1%
1.1%
0.8%
0.8%
0.8%
0.8%
0.8%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.5%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%
0.3%

OS Version:

Windows 8 90.6%
Windows Server 2012 9.4%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000140000000
Entry Address: 0x00003e14

PE Sections:

Name Size of data MD5
.text 17408 4161da3d5866353e1bc1d7c959455880
.data 512 d2e118408beb90f34f783e61ebaecb66
.pdata 1024 89d9e94ba59799132709b05c11701a67
.idata 4096 f18915324e6c0eb03b6fd5b313a0a759
minATL 512 b58be67d49ec6cec7b97095a8fb20b11
.rsrc 26624 e7c3a244b12c96084116fd043ea7c466
.reloc 512 7dbc9b4ef1fb720fed2e4100e50eee3b

More information:

Search on Virustotal
copyright for information about rundll32.exb