windeploy.exe
- File Path:
C:\Windows\system32\oobe\windeploy.exe
- Description: Windows Deployment Loader
Hashes
| Type |
Hash |
| MD5 |
B704E0F4256AF55A85CDD963D5902EC6 |
| SHA1 |
208017DBF0D69E9CCD5A729E9D7C781451C0DF99 |
| SHA256 |
2745FDC894649C718AA32358D155D7D674B0644FA34D7E37C8375090A0901A09 |
| SHA384 |
694162346FF1D2355302C30592DA3F1E6B271FC25F2C63E3666C7B555F56D35CB4283A8F72672EC2F8CF79D0C3A9435F |
| SHA512 |
30B59552AB4D6EA622E08E00295FC07A55545223C08D9C7EEF98239F14F18768994C5776C9ABE8F6DE632AC0D60B744170E885EACD70C9A48C1C4230D63F69B6 |
| SSDEEP |
3072:aag0NhGiLL/m3nDnzgMYjJZkPvAYpZFlKh10+H/aKGfmq4o:xrNhlL+XfboJZ6ZFlKD9Hq4 |
Runtime Data
Open Handles:
| Path |
Type |
| (R-D) C:\Windows\System32\oobe\en-US\windeploy.exe.mui |
File |
| (RW-) C:\Users\user\Documents |
File |
| (RW-) C:\Windows\Panther\UnattendGC\diagerr.xml |
File |
| (RW-) C:\Windows\Panther\UnattendGC\diagwrn.xml |
File |
| (RW-) C:\Windows\Panther\UnattendGC\setupact.log |
File |
| (RW-) C:\Windows\Panther\UnattendGC\setuperr.log |
File |
| \BaseNamedObjects__ComCatalogCache__ |
Section |
| \BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 |
Section |
| \BaseNamedObjects\NLS_CodePage_437_3_2_0_0 |
Section |
| \BaseNamedObjects\SetupLogSection |
Section |
Loaded Modules:
| Path |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\system32\oobe\windeploy.exe |
Signature
- Status: Signature verified.
- Serial:
330000026551AE1BBD005CBFBD000000000265
- Thumbprint:
E168609353F30FF2373157B4EB8CD519D07A2BFF
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: WinDeploy.exe.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.17763.1 (WinBuild.160101.0800)
- Product Version: 10.0.17763.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
MIT License. Copyright (c) 2020-2021 Strontic.