c0de‎ > ‎

vtquery.py

posted Oct 18, 2012, 4:36 AM by Ramece Cave   [ updated Oct 18, 2012, 5:28 AM ]
Description
VTquery is a command line tool for search VirtusTotal. It has two input options for searching based on a SHA256 hash or the file itself.

Syntax
mece@strongbad:~/development$ ./vtquery.py
Usage: vtquery.py <option>
Options:
--hash <SHA256 HASH>
--file <BINARY>
mece@strongbad:~/development$ 

Requirements
Python

Sample Output
mece@strongbad:~/development$ ./vtquery.py --file video.exe
SHA256 SUM: 849ac0f4da20564c039e2311645cdd30aa859d3a5d142f7156ee696ae7e23983
File Name: N/A
Detect Ratio: 8 / 43
Analysis Date: 2010-09-20 18:27:53 UTC

CAT-QuickHeal: (Suspicious) - DNAScan
McAfee: FakeAlert-SpyPro.gen.ak
NOD32: Win32/Adware.SpywareProtect2009
F-Secure: Suspicious:W32/Malware!Gemini
TrendMicro: PAK_Generic.012
McAfee-GW-Edition: Heuristic.LooksLike.Trojan.Crypt.ZPACK.B
Prevx: High Risk Cloaked Malware
AhnLab-V3: Trojan/Win32.Zbot
mece@strongbad:~/development$

Download --> vtquery.py
Comments