Putting a pseudo-MD5 hash in your file header sounds like someone got confused and wound up caught between over-elaborate integrity check and half-hearted security measure.
It sort of works if your signing tool is part of a private console SDK, but the DirectX SDK was always freely available.