How to verify the file hash of an EmEditor installer or portable ZIP

The Downloads page in Customer Center lists the SHA‑256 file hash for each desktop installer (.msi) and portable (.zip) file. Checking the file hash is an additional safeguard to ensure that the file you downloaded has not been corrupted or tampered with.

This is not the primary method for confirming file authenticity. It is important to verify the digital signature. If an installer or ZIP file matches the expected hash but does not have a valid digital signature, it should not be trusted.

Verification steps

Download the .msi installer or .zip portable archive from Customer Center.
Open PowerShell. In the Windows Start Menu, search for and run “Terminal” or “Windows PowerShell”.
Run the following command, replacing with the path to the installer or archive:
```
Get-FileHash "" -Algorithm SHA256
```
- Example:
```
Get-FileHash "~\Downloads\emed64_25.4.3.msi" -Algorithm SHA256
```
- Note the Hash value in the output. This is the hex-encoded SHA‑256 hash of the file.
Go to the Downloads page in Customer Center. Click the 🛈 icon next to the version of EmEditor that you downloaded.

The SHA‑256 hash values for the installer and the portable ZIP archive are shown there. These are the expected hashes for those files.
Compare the hash value from the Get-FileHash command with the hash shown under the installer version or portable version column corresponding to your download.
- If the file hash values do not match, do not use the installer or ZIP archive that you downloaded. It may be corrupted or contain malware.
- If the file hash values match, the file has not been tampered with. If you have not done so already, verify the digital signature to validate the authenticity.