pestudio

Threre are two different versions of pestudio. The professional version of the tool has unique features.

Standard
free

Analysis of executable in a non-professional context.

  • Detect file signature
  • Detect hard-coded URLs and IP addresses
  • Collect metadata
  • Collect imports, exports, strings
  • Retrieve the rich-header, manifest, resources
  • Compute imphash
  • Retrieve the score from virustotal
Download pestudio
Pro
119 Euro/year per machine

Analysis of executable in a professional context.

  • All features of the standard version
  • Use pestudio in batch mode with pestudiox.exe
  • Map hints to their friendly names
  • Show item by groups and colors
  • Computer rich-header hash
  • Create XML report file
  • Show MITRE | ATT&CK Matrix
Buy pestudio-pro

© Marc Ochsenmeier

ContactDisclaimerTwitter