home

qmshex32.dll

Gintaras Didzgalvis

It is registered as a context menu handler (displays a menu when right-clicked in Explorer) named “QM”.
Publisher:
Gintaras Didzgalvis  (signed and verified)

MD5:
9e991e7ccb445b849c6a8c83c4082a40

SHA-1:
62b63aac3fa05335a719a180a511265eecab71a1

SHA-256:
fa08dc7bca14769cd3bf956b50f40c196371dd0284616cac6347fe673f85eb60

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/19/2024 7:42:20 PM UTC  (today)

File size:
121.9 KB (124,808 bytes)

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\Program Files\quick macros 2\ver 0x2030408\qmshex32.dll

Digital Signature
Signed by:
Gintaras Didzgalvis

Authority:
DigiCert Inc

Valid from:
1/28/2013 12:00:00 AM

Valid to:
2/5/2014 12:00:00 PM

Subject:
CN=Gintaras Didzgalvis, O=Gintaras Didzgalvis, L=Rokiskis, S=Rokiskis, C=LT

Issuer:
CN=DigiCert High Assurance Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0E6E11CBC0E77CF9D99FF3E591776037

File PE Metadata
Compilation timestamp:
1/12/2013 6:27:40 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
3072:M/dm2Rpj5BEW2M98+uafWfVR55oDxs9he:AZRvefO8+u+EHMgo

Entry address:
0x9900

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 79, 68, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 56, 57, 33, F6, BF, 38, B5, 01, 10, 83, 3C, F5, F4, A4, 01, 10, 01, 75, 1E, 8D, 04, F5, F0, A4, 01, 10, 89, 38, 68, A0, 0F, 00, 00, FF, 30, 83, C7, 18, E8, 44, 6C, 00, 00, 59, 59, 85, C0, 74, 0C, 46, 83, FE, 24, 7C, D2, 33, C0, 40, 5F, 5E, C3, 83, 24, F5, F0, A4, 01, 10, 00, 33, C0, EB, F1, 8B, FF, 53, 8B, 1D, B8, 50, 01, 10, 56, BE, F0, A4, 01, 10, 57, 8B, 3E...
 
[+]

Entropy:
6.4801

Code size:
78 KB (79,872 bytes)

Context Menu Handler
Display name:
QM

CLSID:
{C00E2DB5-3AF8-45a6-98CB-73FCDE00AC5B}

CLSID name:
QM Shell Extension


Scan qmshex32.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.