{"success":true,"data":{"ext":"wim","name":"Microsoft Windows Imaging Format file","description":"The Microsoft Windows Imaging Format (WIM) is a disk image file format developed and maintained by Microsoft for capturing and deploying Windows system images. It is used in Windows installation media, system recovery tools, and enterprise deployment workflows to store one or more compressed images of files, folders, or entire installations. The format is considered safe to store or inspect, though mounting or restoring images from untrusted sources should still be done with standard file verification practices.","mime":[],"risk_level":"Safe","signatures":[{"hex":"4D 53 57 49 4D 00 00 00","offset":0,"sources":[{"name":"Wikipedia","url":"https://en.wikipedia.org/wiki/List_of_file_signatures"}]},{"hex":"D0 00 00 00 00","offset":0,"sources":[{"name":"Wikipedia","url":"https://en.wikipedia.org/wiki/List_of_file_signatures"}]},{"hex":"4D 53 57 49 4D","offset":0,"sources":[{"name":"Gary Kessler","url":"https://www.garykessler.net/library/file_sigs_GCK_latest.html"}]}],"related":["esd","swm"],"usage":{"python":"def is_wim(file_path: str) -> bool:\n    \"\"\"Check if file is a valid WIM by magic bytes.\"\"\"\n    signature = bytes([0x4D, 0x53, 0x57, 0x49, 0x4D, 0x00, 0x00, 0x00])\n    with open(file_path, \"rb\") as f:\n        return f.read(8) == signature","node":"function isWIM(buffer: Buffer): boolean {\n  const signature = Buffer.from([0x4D, 0x53, 0x57, 0x49, 0x4D, 0x00, 0x00, 0x00]);\n  return buffer.subarray(0, 8).equals(signature);\n}","go":"func IsWIM(data []byte) bool {\n    signature := []byte{0x4D, 0x53, 0x57, 0x49, 0x4D, 0x00, 0x00, 0x00}\n    if len(data) < 8 {\n        return false\n    }\n    return bytes.Equal(data[:8], signature)\n}"}}}