ntoskrnl.exe

NT Kernel & System

Microsoft Corporation

The Windows NT Operating System Kernel is a non-native library that is used by the OS loader for kernel initialization and provides various system services such as process and memory management, hardware virtualization within the kernal layer. It contains core Windows services such as the executive, memory manager, scheduler and cache manager. It is included with the Windows 7 OS.
Publisher:
Microsoft Corporation  (signed and verified)

Product:
Microsoft® Windows® Operating System

Description:
NT Kernel & System

 
Part of the Windows 7 Operating System

Version:
6.1.7600.16740 (win7_gdr.110114-1505)

MD5:
f9fc44d13b32dcbb11d1f466d5cba224

SHA-1:
46542f454efc5da221e21c17486c8f7a1410e112

SHA-256:
b6f55e671596847e8d9343e2b091b0fd9b26a679cf54adf1b430d95b314a8b43

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
12/25/2024 4:01:58 PM UTC  (today)

File size:
3.7 MB (3,902,336 bytes)

Product version:
6.1.7600.16740

Copyright:
© Microsoft Corporation. All rights reserved.

Original file name:
ntkrnlmp.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\windows\syswow64\ntoskrnl.exe

Digital Signature
Authority:
Microsoft Corporation

Valid from:
12/7/2009 1:57:40 PM

Valid to:
3/7/2011 1:57:40 PM

Subject:
CN=Microsoft Windows, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Windows Verification PCA, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
6115230F00000000000A

File PE Metadata
Compilation timestamp:
1/14/2011 7:27:33 PM

OS version:
6.1

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
9.0

Entry address:
0x1154D8

Entry point:
55, 8B, EC, 83, EC, 20, 8B, 5D, 08, 89, 1D, F4, F7, 55, 00, 8B, 0D, DC, F8, 55, 00, 89, 4D, E8, 0B, C9, 75, 3C, C7, 43, 34, 40, B2, 52, 00, C7, 43, 28, 00, F0, 51, 00, 0F, 01, 04, 24, 8B, 54, 24, 02, 83, C2, 30, 8D, 05, 00, 1C, 52, 00, 66, 89, 42, 02, C1, E8, 10, 88, 42, 04, 88, 62, 07, 66, C7, 02, 48, 37, 6A, 30, 0F, A1, 64, 89, 0D, EC, 04, 00, 00, 8B, 43, 34, 89, 45, E0, 8D, 48, 40, 89, 48, 40, 89, 48, 44, 8B, 43, 28, 89, 45, E4, E8, 97, 92, 1F, 00, 83, 7D, E8, 00, 0F, 85, A2, 01, 00, 00, E8, F7, 02, 00...
 
[+]

Entropy:
6.3759

Developed / compiled with:
Microsoft Visual C++

Code size:
3.2 MB (3,369,984 bytes)