How to Run an Installer Integrity Check in Windows 11

When you download an installer from the internet, you're trusting that the file you received is exactly what the developer published — unmodified, uncorrupted, and free from tampering. An installer integrity check is how you verify that trust. Windows 11 gives you several built-in and third-party tools to do this, and understanding which method fits your situation makes the difference between a quick confirmation and a frustrating dead end.

What Is an Installer Integrity Check?

An integrity check compares a cryptographic hash — a unique fingerprint generated from a file's contents — against a known-good value published by the software developer. If even a single byte in the file has changed (due to a corrupted download, a man-in-the-middle attack, or an infected mirror), the hash will not match.

The two most common hash algorithms you'll encounter are:

SHA-256 is the current best practice. If a developer publishes multiple hash types, use SHA-256 or higher.

Method 1: Using Windows PowerShell (Built-In, No Downloads Required)

PowerShell is the fastest native option on Windows 11. It uses the Get-FileHash cmdlet, which supports MD5, SHA-1, SHA-256, SHA-384, and SHA-512.

Steps:

1. Right-click the Start button and select Windows Terminal or PowerShell.
2. Run the following command, replacing the file path with your actual installer location: