1. Check the digital signature with encryption API. (/dkfdtf/archive/2009/07/ 14/4348837 . aspx)
2. Read the additional data at the end of the executable file directly (additional data beyond the file length defined in the header of the executable file, also called overwrite) to see if there is a digitally signed code (find the feature code yourself).