winload.exe
- File Path:
C:\Windows\system32\winload.exe
- Description: OS Loader
Hashes
| Type |
Hash |
| MD5 |
508BDD7AC11E609D4F8572ED3EADA0FC |
| SHA1 |
DF4FD34A007C17DD5683CA07DFE05E8BB269D6D7 |
| SHA256 |
E291E5754C31CD14A4B81899DC8ED14953C922274F77BAE35117B76C9957C862 |
| SHA384 |
3534410BFCD9877DA686EC9837FE2F9C3E81679F58684062598BD64E82051229A7B4DE0DD573E867A93B4AA7972A5E13 |
| SHA512 |
33F5D9D8E9316B392C4C5539E46209157AAC3E6728082C0C3DE2C1D1F982758F5CD8B0140EB649E960E6DA0253D4EEC91F84C4B78B4892716FA6E3850FBA5F6C |
| SSDEEP |
24576:7j/Thh5Or/K6+7ZOmcdNtQF2dsH8ybxbyvfVdVejswu6JMWhL:7jr70r/KpmgF200vHVejsxY |
| PESHA1 |
163B9F2F5ADA8C7B9C9652834DA1604CAFBCA873 |
| PE256 |
3511D54B3FBF0CD70C012AEA7ADADC70C64209CAA7D473771B1527A9F71092EA |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: osloader.exe
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.17763.1490 (WinBuild.160101.0800)
- Product Version: 10.0.17763.1490
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: Unknown
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.