This tool extracts information from the PE header and is specifically made to examine Windows CE executables. You can use it to find out which processor architecture as well as which Version of Windows CE the program was compiled for.
Usage: wcepeinfo [-j] [-n] [-f FIELDNAME] FILE
Print information from a Windows CE PE header.
-j, --json print output as JSON
-f, --field FIELDNAME only print the value of the field with key FIELDNAME
overrides --json option
-h, --help print help
-v, --version print version information
-b, --basic print only WCEApp, WCEArch and WCEVersion
Examples:
wcepeinfo f.exe Print information about file f.exe.
wcepeinfo -j f.exe Print JSON formatted information about file f.exe.
$ wcepeinfo -j file.exe$ wcepeinfo -f WCEArch file.exe
ARMUsing the -b option prints the 3 most useful fields for identifying Windows CE software
- WCEApp - Indicates whether this is a Windows CE Binary, based on architecture and subsystem. Not 100% reliable for early Windows CE apps.
- WCEArch - Architecture, can be one of: "MIPS", "SH3", "SH4", "ARM", "X86"
- WCEVersion - Windows CE Core version, usually one of: "1.0", "1.01", "2.0", "2.01", "2.10", "2.11", "2.12", "3.0", "4.0", "4.10", "4.20", "5.0", "6.0", "7.0", "8.0"
Example:
$ wcepeinfo -b ./htmledit.exe
WCEApp: 1
WCEVersion: 2.0
WCEArch: SH3DLL imports are visible when using the -j option
The tool outputs formatted JSON when used with the -j tag, ideal for being used in JS/TS apps.
Typescript types are provides in WinCEPEInfoType.ts.
Since there is no way to find out, the tool can't tell whether a program was compiled for Handheld PCs or Pocket PCs/Palm-Size PCs. There is an option of looking at DLL imports, so if a program imports a PocketPC-only DLL, you could fairly certainly say that the program was compiled for PocketPC.
make installFor Windows with ming64
make clean && make CC=x86_64-w64-mingw32-gccFor Windows CE
make clean && make CC=arm-mingw32ce-gccThanks go to Atkelar and C:Amie for helping out