home

Qt5Core.dll

Qt5

Digia Plc and/or its subsidiary(-ies)

Qt5Core.dll is part of the Qt framework, a cross-platform application and UI framework for C++. The file has been seen being downloaded from drugvokrug.ru and multiple other hosts.
Publisher:
Digia Plc and/or its subsidiary(-ies)

Product:
Qt5

Description:
C++ application development framework.

Version:
5.4.0.0

MD5:
cf3f9895cf676b5cd8e076a82ad2707a

SHA-1:
cab1ff4e9f6a40356b453a80f63d93869153668d

SHA-256:
08c911ad8ecefd1b70268e56283fb02ba6f5a2a860301ae091a7b0874dbd7663

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 1:20:27 PM UTC  (today)

File size:
3.9 MB (4,051,456 bytes)

Product version:
5.4.0.0

Copyright:
Copyright (C) 2014 Digia Plc and/or its subsidiary(-ies).

Original file name:
Qt5Core.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\roaming\??????????\qt5core.dll

File PE Metadata
Compilation timestamp:
12/5/2014 9:39:30 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
49152:d3ImOfroWOviEf2FXleabQR3JauKYidmuGPbklJsONJsv6tWKFdu9CRTvRYPUFw/:xviTFXUabQl4PlJFJsv6tWKFdu9C

Entry address:
0x212EB0

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 13, 05, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 0A, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, CC, CC, CC, 6A, 10, 68, 18, 83, 36, 67, E8, 3E, 01, 00, 00, 33, C0, 40, 8B, F0, 89, 75, E4, 33, DB, 89, 5D, FC, 8B, 7D, 0C, 89, 3D, 74, 83, 3C, 67, 89, 45, FC, 85, FF, 75, 0C, 39, 3D, 38, CD, 3C, 67, 0F, 84, D4, 00, 00, 00, 3B, F8, 74, 05, 83, FF, 02, 75, 38, A1, 5C, 22, 34, 67, 85, C0, 74, 0E, FF, 75, 10, 57, FF, 75, 08, FF, D0, 8B, F0, 89, 75, E4, 85, F6, 0F, 84, B1...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
2.2 MB (2,300,928 bytes)

The file Qt5Core.dll has been seen being distributed by the following 3 URLs.

http://drugvokrug.ru/bt/_win_int/.../qt5core.dll

http://www.drugvokrug.ru/bt/_win/.../qt5core.dll

http://drugvokrug.ru/bt/_win/.../qt5core.dll

Scan Qt5Core.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.