Information about rundll32.exb

rundll32.exb

File Details

Product Name:

Microsoft® Windows® Operating System
Company Name:

Microsoft Corporation
MD5: 3a6209ac494296c24c2065cb4392b5f4
Size: 50 KB
First Published: 2017-05-21 03:02:11 (7 years ago)
Latest Published: 2024-12-10 23:01:53 (4 months ago)
Status: Undefined (on last analysis)
Analysis Date: 2024-12-10 23:01:53 (4 months ago)

Common Places:

%windir%\system32
%sysdrive%\zv\noexp\files
%commonappdata%\net protector\nposfile\2017-03-01_1332\files
%system%
%system%
%system%
%system%
%system%
%system%
%system%

File Names:

rundll32.exe
rundll32.exb
Rundll32.exe
RunDll32.exe

Geography:

Thailand 14.2%
India 11.0%
France 9.1%
Russia 7.8%
Turkey 6.7%
Indonesia 5.4%
Saudi Arabia 4.0%
China 4.0%
United Arab Emirates 3.0%
Vietnam 2.4%
Mexico 2.2%
Mali 1.9%
Ukraine 1.6%
Poland 1.6%
Kazakhstan 1.6%
South Korea 1.6%
Chile 1.3%
Egypt 1.3%
Italy 1.3%
Denmark 1.1%
Iran 1.1%
Kyrgyzstan 1.1%
Colombia 1.1%
Singapore 1.1%
Peru 1.1%
Slovakia 0.8%
Tunisia 0.8%
Lebanon 0.8%
Uruguay 0.8%
Australia 0.8%
Hong Kong 0.5%
Greece 0.5%
Nigeria 0.5%
Moldova 0.5%
Azerbaijan 0.5%
Argentina 0.5%
Ecuador 0.5%
Iraq 0.5%
Brazil 0.5%
Netherlands 0.5%
Canada 0.3%
Taiwan 0.3%
Bhutan 0.3%
Israel 0.3%
Spain 0.3%
Pakistan 0.3%
Croatia 0.3%

OS Version:

Windows 8 90.6%
Windows Server 2012 9.4%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000140000000
Entry Address: 0x00003e14

PE Sections:

Name Size of data MD5
.text 17408 4161da3d5866353e1bc1d7c959455880
.data 512 d2e118408beb90f34f783e61ebaecb66
.pdata 1024 89d9e94ba59799132709b05c11701a67
.idata 4096 f18915324e6c0eb03b6fd5b313a0a759
minATL 512 b58be67d49ec6cec7b97095a8fb20b11
.rsrc 26624 e7c3a244b12c96084116fd043ea7c466
.reloc 512 7dbc9b4ef1fb720fed2e4100e50eee3b

More information:

Search on Virustotal
copyright for information about rundll32.exb
­