PeStudio is a portable tool that performs malware assessments on executable files. Since the target file is never launched during the course of the investigation, you can safely evaluate the file, in addition to malware, without risk.
Indicators given as a result of the analyzed images are grouped into categories according to their severity. The classifications are based on XML files provided within this tool. PeStudio shows when an image is compressed using UPX or MPRESS. PeStudio helps you to define the trustworthiness of the application being analyzed.
PeStudio can query Antivirus engines hosted by Virustotal for the file being analyzed. This feature only sends the MD5 of the file being analyzed. This feature can be switched ON or OFF using an included XML file.