home

quartz.dll

DirectShow Runtime.

Microsoft Corporation

It is included with the Windows 7 OS. The file has been seen being downloaded from gsz-ao.sourceforge.net.
Publisher:
Microsoft Corporation

Product:
Microsoft® Windows® Operating System

Description:
DirectShow Runtime.

 
Part of the Windows 7 Operating System

Version:
6.6.7600.16385 (win7_rtm.090713-1255)

MD5:
5c3ba07e215b4f693e7d78d6f4980d98

SHA-1:
39f11d75740423f67de0ec7eb975eb9dc4502938

SHA-256:
7dba5d646583d8b4170ed7ec204c17e71b8162b72c0a32f2bd9e8d899a692c5a

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
11/24/2024 6:49:47 AM UTC  (today)

File size:
1.3 MB (1,329,664 bytes)

Product version:
6.6.7600.16385

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
Quartz.dll.mui

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\windows\syswow64\quartz.dll

Registration
CLSIDs:
{05589FAF-C356-11CE-BF01-00AA0055595A}, {060AF76C-68DD-11D0-8FC1-00C04FD9189D}, {06B32AEE-77DA-484B-973B-5D64F47201B0}, {07B65360-C445-11CE-AFDE-00AA006C14F4}, {1643E180-90F5-11CE-97D5-00AA0055595A}, {1B544C20-FD0B-11CE-8C63-00AA0044B51E}

COM registered:
Yes

File PE Metadata
Compilation timestamp:
7/6/2014 8:38:19 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:VbJAiuExiCIfeWA+z0+Og5qYaT0U7S8XueEEg+7JwcnKDhDO3xXl:IiuQ3IfeWjzbjarE8hnKDhS3V

Entry address:
0x42CA

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 49, 02, 00, 00, 5D, 90, 90, 90, 90, 90, 6A, 2C, 68, 98, 43, 01, 76, E8, C8, F8, FF, FF, 8B, 4D, 0C, 33, D2, 42, 89, 55, E4, 33, F6, 89, 75, FC, 89, 0D, 44, 60, 13, 76, 3B, CE, 0F, 84, 47, 88, 02, 00, 3B, CA, 0F, 85, 50, 88, 02, 00, A1, 0C, 80, 13, 76, 3B, C6, 0F, 85, F9, 0B, 03, 00, 39, 75, E4, 74, 5E, C7, 45, FC, 02, 00, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 2E, FA, FF, FF, 89, 45, E4, 89, 75, FC, 39, 75, E4, 74, 3E, 8B, 4D, 0C, C7, 45, FC, 03, 00...
 
[+]

Entropy:
6.7411

Code size:
1.1 MB (1,198,080 bytes)

The file quartz.dll has been seen being distributed by the following URL.

http://gsz-ao.sourceforge.net/.../QUARTZ.DLL

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.