» rld.dll
Overview
Analysis
File Details
Programs (1)
Downloads (5)

rld.dll

The module rld.dll has been detected as a potentially unwanted program by 17 anti-malware scanners. This file is typically installed with the program NBA 2k13 Repack by VictorVal. The file has been seen being downloaded from dc350.4shared.com and multiple other hosts.

File name:

rld.dll

MD5:

fdef6a4605ef15ca791bdfa88baa69b7

SHA-1:

f7ea4c1534990d8db26496cff9a4006264a84db8

SHA-256:

badc7a779b85dcb05e739c7b2ce1cdb116cf356be70e3361587bccc611a30e1c

Scanner detections:

17 / 68

Status:

Potentially unwanted

Analysis date:

4/27/2024 3:03:33 AM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Trojan.Packed

7.1.1

avast!

Win32:PatchDll-A [PUP]

2014.9-131225

AVG

Generic6_c

2015.0.3606

Bkav FE

W32.Clod411.Trojan

1.3.0.4613

ESET NOD32

Win32/Packed.VMProtect.AAH (variant)

8.9190

Fortinet FortiGate

W32/Generic

1/2/2014

IKARUS anti.virus

Virus.Win32.Obfuscator

t3scan.2.2.29

K7 AntiVirus

Riskware

13.175.10837

McAfee

Artemis!FDEF6A4605EF

5600.7270

Microsoft Security Essentials

VirTool:Win32/Obfuscator.XZ

1.165.247.01

NANO AntiVirus

Trojan.Win32.Thed.bbyevv

0.28.0.57029

Norman

Suspicious_Gen4.BMFLB

11.20131225

Panda Antivirus

Trj/Thed.W

13.12.25.06

Sophos

Mal/Generic-L

4.96

Trend Micro House Call

TROJ_SPNR.03JP12

7.2.2

Trend Micro

TROJ_SPNR.03JP12

10.465.02

VIPRE Antivirus

Trojan.Win32.Generic

25418

File size:

364.5 KB (373,248 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\users\{user}\downloads\rld.dll

File PE Metadata

Compilation timestamp:

9/20/2012 4:07:57 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

6144:gihJ+dWTBsID79IUKv6YSi7hebnDy+Lz4fBGqMZKqJji7a+EEOa3DWAWzEuHgdnK:gGJ+dWTSUhKy9Uobd34JtMZFJG7AEOal

Entry address:

0xA380

Entry point:

B8, 01, 00, 00, 00, C2, 0C, 00, CC, CC, CC, CC, CC, CC, CC, CC, E9, EC, B1, 03, 00, 60, 9C, 8F, 44, 24, 1C, C7, 04, 24, 47, 33, E3, 90, FF, 74, 24, 1C, 8F, 45, 00, 54, FF, 74, 24, 04, 66, 89, 64, 24, 04, 55, 8D, 64, 24, 2C, E9, 6B, 11, 00, 00, 89, 5C, 24, 28, 66, 0F, CD, 8D, 2C, F5, F9, 7B, 44, 5E, 66, FF, C5, 8D, 2C, DD, 14, 01, 2A, ED, 87, 74, 24, 24, 66, 0F, BE, F0, E9, 12, 57, 01, 00, 88, 1C, 24, 89, 0C, 24, 68, 81, DF, F3, F0, 66, 89, 14, 24, 89, 04, 24, 60, E9, 77, FB, FF, FF, 89, 0C, 24, 9C, C6, 04... 
[+]

Code size:

51 KB (52,224 bytes)

The file rld.dll has been discovered within the following program.

NBA 2k13 Repack by VictorVal

This is a repack of the orignal game.

www.vvalworld.com

About 1% of users remove it

The file rld.dll has been seen being distributed by the following 5 URLs.

http://dc350.4shared.com/download/.../rld.dll?tsid=20170208-213222-a5d3ef5e&sbsr=019e8b2160ffa8a3ec6142e04fe21999999&bip=MTk3LjMzLjIwNS4xMzE&lgfp=2000

http://dc613.4shared.com/download/.../rld.dll?tsid=20160622-215743-a8b223b7&sbsr=04f4fa9ac1cbfc805939dd686bce32e7978&lgfp=2000

http://download1042.mediafire.com/6xc2ll09katg/.../rld.dll

http://download1281.mediafire.com/a74z4fsb4yeg/.../rld.dll

http://dc613.4shared.com/download/.../rld.dll?tsid=20131208-181735-b40784da

Remove rld.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.