WdBoot.sys
Microsoft antimalware boot driver
Microsoft Corporation
It runs as a Windows 64-bit kernel mode device driver named “Driver de Inicialização do Windows Defender”. It is included with Windows 8.
Product:
Microsoft® Windows® Operating System
Description:
Microsoft antimalware boot driver
Part of the Windows 8.1 (Blue) Operating System
Version:
4.3.9431.0 (winmain_bluemp.130615-1214)
MD5:
45bdeb64c527b2e3f3898a33a5053fe0
SHA-1:
7170657365edb48e4dee59fc0c3404b81576d6d2
SHA-256:
9599a58f08f3184ec53ace7c0e868f1755c75a4689934d91ba12394c14cef0bc
Scanner detections:
0 / 68
Status:
Clean (as of last analysis)
Whitelisted (by digital signature)
Analysis date:
3/29/2024 4:09:42 AM UTC (today)
File size:
33.9 KB (34,760 bytes)
Product version:
4.3.9431.0
Copyright:
© Microsoft Corporation. All rights reserved.
Original file name:
WdBoot.sys
File type:
Driver (Win64 SYS)
Language:
English (United States)
Common path:
C:\Windows\System32\drivers\wdboot.sys
Authority:
Microsoft Corporation
Valid from:
7/9/2012 7:14:38 PM
Valid to:
10/9/2013 7:14:38 PM
Subject:
CN=Microsoft Windows Early Launch Anti-malware Publisher, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Issuer:
CN=Microsoft Code Signing PCA 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
Serial number:
33000000148E97BFE6C9F875AB000000000014
CTPH (ssdeep):
384:FfGUKT2p800HBCMWwowT3GsFPVqLd8lEptWoIlWaAlpWh+wU8QlK9t77:9GUKT2GLHAMloaGgPVaq6+Ol3gH77
2 Drivers
Display name:
Driver de Inicialização do Windows Defender
Type:
Kernel device driver (KernelDriver)
Display name:
Controlador de arranque de Windows Defender
Type:
Kernel device driver (KernelDriver)