home

winlaod.exe

OS Loader

Windows 7 Loader XE

Publisher:
Microsoft Corporation  (signed by Windows 7 Loader XE)

Product:
Microsoft® Windows® Operating System

Description:
OS Loader

Version:
6.1.7601.18649 (win7sp1_gdr.141030-1508)

MD5:
7af6c069b3aba7a4621bbfb41abb3f28

SHA-1:
e827bb718648daa96d3e595fd351ec5c6b2b1a43

SHA-256:
80e21058935a20ce51443e45ea9c2ca48d46f79e67128cb9904e4fe429d08b67

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 5:49:45 PM UTC  (today)

File size:
498.5 KB (510,440 bytes)

Product version:
6.1.7601.18649

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
osloader.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Windows\System32\winlaod.exe

Digital Signature
Signed by:
Windows 7 Loader XE

Authority:
Windows 7 Loader XE

Valid from:
1/1/1900 1:00:00 AM

Subject:
CN=Windows 7 Loader XE

Issuer:
CN=Windows 7 Loader XE

Serial number:
E5844574E087B08C408DD8D6EFE43DD8

File PE Metadata
Compilation timestamp:
10/31/2014 4:30:01 AM

OS bitness:
Win32

Subsystem:

Linker version:
9.0

CTPH (ssdeep):
12288:6TQnV+LM8uGORpe9U3K4G3C9K4Dnmlso9RExpRRTs58dHNqn64:6TQnVh8fEgD4NR+e/+64

Entry address:
0x1000

Entry point:
8B, FF, 55, 8B, EC, 83, E4, F8, 83, EC, 54, 53, 56, 8B, 75, 08, 8B, 56, 34, 57, 03, D6, 6A, 07, 59, 33, C0, 8B, FA, F3, AB, C7, 02, 01, 00, 00, 00, 8B, 5E, 28, 03, DE, 6A, 08, BF, 20, E1, 46, 00, 8B, F3, 59, 33, C0, F3, A6, 89, 54, 24, 18, 74, 0D, B8, F7, 00, 00, C0, 89, 42, 04, E9, 78, 01, 00, 00, BF, 01, 00, 00, 80, E8, 1D, 7B, 00, 00, 84, C0, 74, 1C, 8D, 44, 24, 20, 50, 6A, 00, 57, E8, 3A, 77, 04, 00, F7, 44, 24, 2C, 00, 00, 10, 00, C6, 44, 24, 13, 01, 75, 05, C6, 44, 24, 13, 00, 33, FF, 47, E8, F0, 7A...
 
[+]

Code size:
406.5 KB (416,256 bytes)

Scan winlaod.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.