quartz.dll

DirectShow Runtime.

Microsoft Corporation

Publisher:
Microsoft Corporation

Product:
Microsoft® Windows® Operating System

Description:
DirectShow Runtime.

 
Part of the Windows Operating System

Version:
10.0.10240.16384 (th1.150709-1700)

MD5:
162003754173baa10cc740ab2c1a2912

SHA-1:
8c82fa96cfdeb8a4048360fb71c208eaf14a4f60

SHA-256:
490545fd245e6e69bcce6e4beb3d8741b5f1593e0ae57e9011c1148c09f08bb9

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
12/27/2024 12:00:12 PM UTC  (today)

File size:
1.5 MB (1,541,632 bytes)

Product version:
10.0.10240.16384

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
Quartz.dll.mui

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\windows\syswow64\quartz.dll

Registration
CLSIDs:
{05589FAF-C356-11CE-BF01-00AA0055595A}, {060AF76C-68DD-11D0-8FC1-00C04FD9189D}, {06B32AEE-77DA-484B-973B-5D64F47201B0}, {07B65360-C445-11CE-AFDE-00AA006C14F4}, {1643E180-90F5-11CE-97D5-00AA0055595A}, {1B544C20-FD0B-11CE-8C63-00AA0044B51E}

COM registered:
Yes

File PE Metadata
Compilation timestamp:
7/10/2015 4:33:44 AM

OS version:
10.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.10

CTPH (ssdeep):
24576:PWfsp4IAdu8XCLAugttIe52S9kf1Z0OmdJCw+RSikmRuoQ+19Gm/5G3O/////Lxo:PWf2zAugIeU0OmTCv4SRtBG3Y3BVS

Entry address:
0x4B610

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, D8, 06, 00, 00, 5D, E9, 2A, 00, 00, 00, CC, CC, CC, CC, CC, 8B, FF, 55, 8B, EC, B8, 63, 73, 6D, E0, 39, 45, 08, 75, 0D, FF, 75, 0C, 50, E8, 39, 05, 00, 00, 59, 59, 5D, C3, 33, C0, 5D, C3, CC, CC, CC, CC, CC, 6A, 30, 68, 90, 09, 65, 35, E8, 50, 07, 00, 00, C7, 45, E0, 01, 00, 00, 00, 33, F6, 89, 75, FC, 8B, 45, 0C, 83, F8, 01, 77, 05, A3, 04, 30, 65, 35, 83, 7D, 0C, 00, 75, 11, 83, 3D, 1C, 9B, 65, 35, 00, 75, 08, 89, 75, E0, E9, 39, 02, 00, 00, 8B, 45, 0C, 83...
 
[+]

Entropy:
6.7719

Code size:
1.3 MB (1,381,888 bytes)

The file quartz.dll has been seen being distributed by the following 2 URLs.