home

winload.exe

OS Loader

Windows Main Build Lab Account

Publisher:
Microsoft Corporation  (signed by Windows Main Build Lab Account)

Product:
Microsoft® Windows® Operating System

Description:
OS Loader

Version:
6.1.7077.0 (winmain_win7rc.090404-1255)

MD5:
d28650ebc28b887410c774dd900d884a

SHA-1:
b604cb6e4ce88c098fea51ae75ac56eab11fd725

SHA-256:
325eebd31f6a7bf795376b62e9a98cb8a4844cfa5c59c889610ca6c312819e60

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
5/6/2024 2:26:01 AM UTC  (today)

File size:
491.3 KB (503,064 bytes)

Product version:
6.1.7077.0

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
osloader.exe.mui

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Digital Signature
Signed by:
Windows Main Build Lab Account

Authority:
MSIT Test CodeSign CA 2

Valid from:
3/13/2009 4:39:14 PM

Valid to:
3/13/2010 4:39:14 PM

Subject:
CN=Windows Main Build Lab Account

Issuer:
CN=MSIT Test CodeSign CA 2, DC=redmond, DC=corp, DC=microsoft, DC=com

Serial number:
29C9F976000100003536

File PE Metadata
Compilation timestamp:
4/9/2009 10:22:50 AM

OS bitness:
Win32

Subsystem:

Linker version:
9.0

CTPH (ssdeep):
12288:hALwBx71spjhWBg1HWtqoz3mpUctJoRf6RVhwbawqn68:GLwBUVT26R4d+68

Entry address:
0x1000

Entry point:
8B, FF, 55, 8B, EC, 83, E4, F8, 83, EC, 54, 53, 56, 8B, 75, 08, 8B, 56, 34, 57, 03, D6, 6A, 07, 59, 33, C0, 8B, FA, F3, AB, C7, 02, 01, 00, 00, 00, 8B, 5E, 28, 03, DE, 6A, 08, BF, E4, BB, 46, 00, 8B, F3, 59, 33, C0, F3, A6, 89, 54, 24, 18, 74, 0D, B8, F7, 00, 00, C0, 89, 42, 04, E9, 78, 01, 00, 00, BF, 01, 00, 00, 80, E8, D4, 7A, 00, 00, 84, C0, 74, 1C, 8D, 44, 24, 20, 50, 6A, 00, 57, E8, 56, 70, 04, 00, F7, 44, 24, 2C, 00, 00, 10, 00, C6, 44, 24, 13, 01, 75, 05, C6, 44, 24, 13, 00, 33, FF, 47, E8, A7, 7A...
 
[+]

Entropy:
6.6997

Code size:
397 KB (406,528 bytes)

Scan winload.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.