Has my EXE been modified?

The Clarion linker writes 0 to the checksum field of the header. This is valid (allowed by PE format specification) value.

My personal opinion. If OS allows to run the program (load EXE and/or DLLs), any kinds of protection from modification implied to that program are just for novices. One who know how to use the debugger (especially, if a “correct” debugger is using) can overcome all these protections.

1 Like

This is one of my pet peeves with people, there’s no need to wrap a call to WinVerifyTrust inside a C DLL when it can be called quite easily from native Clarion code.
But I’ll go get off my soapbox now :slight_smile:

I guess if you want to re-write it, go ahead. My guess is that it was easier to re-use the code he already had, while at the same time being very generous. Then you throw shade on it.

(post deleted by author)

1 Like