Single Executable Analysis
Enter Feature Values
Prefilled with a demo row from test set. Hover over icons for feature explanations.
About the Features
These are 27 features extracted from the Portable Executable (PE) header of Windows .exe files:
Machine/Architecture
Indicates target CPU (x86=0x014c, x64=0x8664)
Sizes
Code, data, headers, image sizes in bytes
Timestamps
File creation and first-seen dates
Flags & Characteristics
Security features (ASLR, DEP), DLL attributes
Entropy
File randomness (higher = possible packing)
💡 Tip: Use tools like PEview, CFF Explorer, or pefile (Python) to extract these features from real .exe files.
Values are typically integers. Hover over feature names for detailed explanations.
Important Notes
- This is static analysis only - no code execution
- High confidence (>90%) predictions are most reliable
- Always use multiple security tools for critical files
- False positives/negatives are possible