PPA

application/vnd.ms-powerpoint

Safe

Magic Bytes

Offset: 0
D0 CF 11 E0 A1 B1 1A E1

PowerPoint Add-in (PPA) is a legacy macro-enabled file format developed by Microsoft for extending the functionality of PowerPoint presentations. This format allows developers to package Visual Basic for Applications (VBA) code into reusable modules that automate tasks or add custom features across the Microsoft Office suite. While modern security protocols restrict the execution of unverified macros, the format remains supported by current Office installations to ensure backward compatibility for legacy software.

Extension

.ppa

MIME Type

application/vnd.ms-powerpoint

Byte Offset

0

Risk Level

Safe

Validation Code

How to validate .ppa files in Python

Python 
def is_ppa(file_path: str) -> bool:
    """Check if file is a valid PPA by magic bytes."""
    signature = bytes([0xD0, 0xCF, 0x11, 0xE0, 0xA1, 0xB1, 0x1A, 0xE1])
    with open(file_path, "rb") as f:
        return f.read(8) == signature

How to validate .ppa files in Node.js

Node.js 
function isPPA(buffer: Buffer): boolean {
  const signature = Buffer.from([0xD0, 0xCF, 0x11, 0xE0, 0xA1, 0xB1, 0x1A, 0xE1]);
  return buffer.subarray(0, 8).equals(signature);
}
Go 
func IsPPA(data []byte) bool {
    signature := []byte{0xD0, 0xCF, 0x11, 0xE0, 0xA1, 0xB1, 0x1A, 0xE1}
    if len(data) < 8 {
        return false
    }
    return bytes.Equal(data[:8], signature)
}

API Endpoint

GET /api/v1/ppa
curl https://filesignature.org/api/v1/ppa

Related Formats

.ipa .pam .pea .dbx .doc .dot .c .onetoc .vcf