SigcheckGUI v1.1.3

smaragdus on 21 Feb 2017
  • 1MB (uncompressed)
  • Released on 4 Nov 2016
  • Suggested by Checker

SigcheckGUI is a system and security analysis tool for understanding files and processes. The program shows a variety of file data including signing source, 32/64-bit status, version, publisher, and more. Security options include VirusTotal analysis and file hashing (MD5, SHA1, and SHA256). The program can even run on all active processes.

The program can export results to spreadsheet (CSV) or copied to the clipboard.

SigcheckGUI is a front-end for Sigcheck from Sysinternals.

Runs on:Vista / Win7 / Win8 / Win10
Writes settings to: Application folder
Stealth: ? No. HKCU\Software\Sysinternals\SigCheck: "EulaAccepted"
License: Freeware for non-commercial use (obtain commercial license)
How to extract:
  1. Download the ZIP package and extract to a folder of your choice.
  2. Download Sigcheck ZIP package and extract sigcheck.exe or sigcheck64.exe (for 64-bit OS) to the same folder.
  3. Rename sigcheck64.exe to sigcheck.exe.
  4. Launch SigcheckGUI.exe.

  • To enable Compute Hashes and Query VirusTotal features, check those boxes in the Options tab
  • To check extensions other than EXE and DLL, select the Options tab and enter them in the "Allowed Extentions" entry
Similar/alternative apps: RapidCRC Unicode
What's new? Added:
  • SigcheckGUI now handles passed files and folders.
  • Added "Clear unknown" to the Clear menu.
  • Changed/added some icons.
  • Verified SigcheckGUI works with sigcheck.exe v2.54.

11 comments on SigcheckGUI  The Portable Freeware Collection Latest Entries Feed

__philippe 2016-09-03 21:33

The underlying SysInternals's SIGCHECK utility (CLI) is updated to V2.54 (as of 29-AUG-2016) with the following change :

- fixes a bug that could result in it reporting signed files that have been modified as having a valid signature.


smaragdus 2016-09-03 20:01

Version 1.1.2 does not include 'sigcheck.exe'.


__philippe 2016-02-04 13:18

The underlying SysInternals's SIGCHECK utility (CLI) is updated to V2.5 (as of 02-FEB-2016)
with the following change :

- now reports all the signatures of images that have multiple signers

Please note that since v2.4, SigCheck requires Vista, Win7 or higher.
(v2.3 still works fine under XP)


I am Baas 2016-01-11 14:15

Unfortunately, links do not seem to displayed well in the comment section...

Select "Sysinternals Suite October 26, 2015" under the "All versions" tab...


I am Baas 2016-01-10 18:02


Download Sysinternals Suite October 26, 2015 from,_2015 and extract. You will find previous version of AccessChk and Sigcheck inside.

Direct link @


billon 2016-01-10 15:59

Thank you, _philippe, but it's 2.4, 'cause their links direct to Sysinternals' site.
but that's wrong place for such discussion, so never mind.


__philippe 2016-01-10 14:46

Perhaps here, if you hurry...;-)


billon 2016-01-10 11:34

Damn, and AccessChk too!
Where to get previous?


__philippe 2016-01-09 18:06

The underlying SysInternals's SIGCHECK utility (CLI) is updated to V2.4
(as of 04-JAN-2016) with the following new options :

1. Reports any certificates installed on the system that do not chain to one of the certificates in the Microsoft certificate trust list (CTL).

2. Adds the ability to take image information captured from Sigcheck on a system disconnected from the Internet and obtain Vir*Total status from one that’s connected.

Full details here:

Warning to die-hard WinXP users:
Regrettably, this newer version aborts with a dire admonition about
"Entry point SetfileInformationByHandle not found in Kernel32.dll"...:-(

Better stick with former version V2.3 which behaves itself under XP.


__philippe 2015-11-09 13:01

The underlying Sysinternal's SIGCHECK utility (CLI) is updated to v2.3 (as of 26-OCT-2015)

- includes updated Windows 10 certificate OIDs,
- support for checking corresponding MUI (internationalization strings) files for more accurate version data,
- shows the version company name as well as signature publisher for signed files.


Older comments are hidden - Click to display all comments ▾

Post your comment