pestudio

There are two different versions of pestudio. The professional version of the tool has unique features not available in the standard version.

Standard
free

Malware Analysis in a private context.

  • Detect file signature
  • Detect hard-coded URLs and IP addresses
  • Collect metadata
  • Collect imports, exports, strings
  • Retrieve manifest, resources, overlay
  • Retrieve score from virustotal
  • ...
Pro
159 Euro/user /year

Malware Analysis in a professional context.

  • All features of the standard version
  • Use pestudio in batch mode with pestudiox.exe
  • Show items by groups and colors
  • Create XML report file
  • Show MITRE | ATT&CK mapping
  • Show .NET namespaces
  • Dump .NET embedded file(s), etc...