Task: you want to decide if a given program is suspicious without running it. I assume that you already know about antivirus and anti-malware scanners, so those won't be covered here. These free programs report various characteristics of an executable. Some report about entropy (helpful to decide if a program is likely packed or not). Some report about structural anomalies. Some report about digital signatures. 1. pescanner - console program; requires Python and dependencies to be installed; can process all files in a given folder 2. PeSweep - console program 3. Mandiant Red Curtain - GUI program; doesn't process 64-bit programs 4. ExeScan - console program; requires Python and dependencies to be installed 5. Malware Analyzer - console program 6. Portable Executable Scanner - console program 7. Sigcheck - console program; reports about digital signatures I've tried all of the above programs. I plan to use pescanner and Sigcheck in a batch file that processes all files in my Downloads folder and logs the results to text files. Also see thread Malware and entropy.