home

rld.dll

The module rld.dll has been detected as a potentially unwanted program by 17 anti-malware scanners. Additionally, the file is typically installed by a number of programs including Patch LZS Oficial Tuga Vicio v2 by Tuga Vicio and Pes 2013 by Pro Evolution Soccer 2013. The file has been seen being downloaded from mlfdll.com and multiple other hosts.
MD5:
d40f2f2e9db048ceb2e76301d14d3870

SHA-1:
e592559e1339d7c4621c1261acca3add94074af6

SHA-256:
491ea6d32abd5894aea7617fc7e4df3084b2b974fad4827290818c3310cbce47

Scanner detections:
17 / 68

Status:
Potentially unwanted

Analysis date:
4/26/2024 12:37:47 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Trojan.Packed
7.1.1

avast!
Win32:PatchDll-A [PUP]
2014.9-131224

AVG
Generic6_c
2014.0.3615

Bkav FE
W32.Clodffb.Trojan
1.3.0.4613

ESET NOD32
Win32/HackTool.Crack.BB potentially unsafe application
6.3.12010.0

Fortinet FortiGate
W32/Generic
12/24/2013

IKARUS anti.virus
Virus.Win32.Obfuscator
t3scan.2.2.29

K7 AntiVirus
Riskware
13.174.10575

McAfee
Artemis!D40F2F2E9DB0
5600.7271

Microsoft Security Essentials
VirTool:Win32/Obfuscator.XZ
1.165.247.01

NANO AntiVirus
Trojan.Win32.Thed.bbyevv
0.28.0.57029

Norman
Troj_Generic.EZRYI
11.20131224

Panda Antivirus
Trj/Thed.W
13.12.24.02

Sophos
Mal/Generic-L
4.96

Trend Micro House Call
TROJ_SPNR.03JP12
7.2.358

Trend Micro
TROJ_SPNR.03JP12
10.465.24

VIPRE Antivirus
Trojan.Win32.Generic
25420

File size:
364.5 KB (373,248 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\downloads\rld.dll

File PE Metadata
Compilation timestamp:
9/21/2012 12:07:57 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:gihJ+dWTBsID79IUKv6YSi7hebnDy+Lz4fBGqMZKqJji7a+EEOa3DWAWzEuHgdnK:gGJ+dWTSUhKy9Uobd34JtMZFJG7AEOal

Entry address:
0xA380

Entry point:
B8, 01, 00, 00, 00, C2, 0C, 00, CC, CC, CC, CC, CC, CC, CC, CC, E9, EC, B1, 03, 00, 60, 9C, 8F, 44, 24, 1C, C7, 04, 24, 47, 33, E3, 90, FF, 74, 24, 1C, 8F, 45, 00, 54, FF, 74, 24, 04, 66, 89, 64, 24, 04, 55, 8D, 64, 24, 2C, E9, 6B, 11, 00, 00, 89, 5C, 24, 28, 66, 0F, CD, 8D, 2C, F5, F9, 7B, 44, 5E, 66, FF, C5, 8D, 2C, DD, 14, 01, 2A, ED, 87, 74, 24, 24, 66, 0F, BE, F0, E9, 12, 57, 01, 00, 88, 1C, 24, 89, 0C, 24, 68, 81, DF, F3, F0, 66, 89, 14, 24, 89, 04, 24, 60, E9, 77, FB, FF, FF, 89, 0C, 24, 9C, C6, 04...
 
[+]

Code size:
51 KB (52,224 bytes)

The file rld.dll has been discovered within the following programs.

Patch LZS Oficial Tuga Vicio v2  by Tuga Vicio
About 4% of users remove it
Pes 2013  by Pro Evolution Soccer 2013
www.Pes2013.com
About 6% of users remove it
PES 2013 version 1  by Saba Games Group
www.btps.ir
About 4% of users remove it
PES THAI  by PES THAI
About 1% of users remove it
Pro Evolution Soccer 2013 Repack  by VictorVal
This is a repack of the orignal game.
www.vvalworld.com
About 2% of users remove it
PRO EVOLUTION SOCCER 2013 version PRO EVOLUTION SOCCER 2013  by SarirGame, Inc.
www.sarirgame.ir
About 1% of users remove it
 
Powered by Should I Remove It?

The file rld.dll has been seen being distributed by the following 3 URLs.

http://mlfdll.com/.../rld.dll

http://download1486.mediafire.com/exq64fmpopxg/.../rld.dll

http://download1969.mediafire.com/cm803m9hbgqg/.../rld.dll

Remove rld.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.