The Finest Hand-Selected Downloads
Individually reviewed & tested
Store News

PeStudio 9.17

Analyse any Windows executable for signs of malware

Rating:
Operating Systems:
Windows 10, Windows 7 (32 bit), Windows 7 (64 bit), Windows 8, Windows Vista, Windows XP
License:
Freeware
Developer:
Marc Ochsenmeier
Software Cost:
Free
Category
Security
Date Updated:
23 September 2021
Downloads To Date:
6040
Languages:
English
Download Size:
922.00 KB

PeStudio is a free and portable tool which uses static analysis (and other techniques) to help you discover more about suspicious applications. The program is aimed squarely at developers and Windows experts, but don't let that put you off - there are features here which everyone can use and understand.

Getting started, for instance, is as easy as dragging and dropping a program onto PeStudio. A detailed report appears almost immediately, and the first Indicators tab delivers plenty of useful information. Is it digitally signed, for instance? Targeted at 32 or 64-bit processors? Does it need administrative permission? And there are details about ASLR, DEP, SafeSEH, resources and more.

Clicking the Strings tab will then reveal any embedded text strings in the program - function names, paths, prompts, web addresses and more - which can be a useful way to figure out what it's doing. (Malware will usually employ various tricks to hide this kind of information, but it's still worth a try.)

The Libraries and Imports tabs show you the DLLs and other support files required by your program, and the functions it's using.

The Resources tab will list structures embedded within your program (typically icons, bitmaps, dialogs and so on).

Usefully, clicking Indicators > VirusTotal Scan Report will tell you whether any of the VirusTotal antivirus engines (46, as we write) thinks the executable is malware.

And PeStudio even comes with command line support, which means you can automate its analysis and check a host of files in a single operation.

Verdict:

A nicely balanced malware analysis tool, PeStudio has some useful features for regular users, while also providing the more in-depth details experts need

Your Comments & Opinion

Related Downloads Other Downloads From This Category

Uncover the innards of executable files with this powerful programmer's tool

Freeware

Examine, edit and analyse both 32 and 64-bit Portable Executable (PE) files

Freeware

Find out more about EXE (and other) files

Open Source

Search for disguised executables

Freeware

A feature-packed file analysis tool

Freeware

Log executable files as they're created on your system

Freeware
35,774,971
Downloads
Secure & Tested Software
6,333
Reviews
Instant Download 24/7
304,773
Members
10+ Years of Service