Skip to content
/ VirusTotal_Process_Scan Public

Scanning all the running .exe files in device with VirusTotal

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

mrtergl/VirusTotal_Process_Scan

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

21 Commits
Images
Images
 
 
HASH_SCAN.py
HASH_SCAN.py
 
 
README.md
README.md
 
 

Repository files navigation

ViruTotal_Hash_Scan

Scanning all the running .exe files in VirusTotal with Python.

Necessary Libraries:

Library Code to install
hashlib pip install hashlib
pathlib2 pip install pathlib2
WMI pip install WMI
requests pip install requests
pandas pip install pandas

Getting .exe files

I used wmi library to get all running files from device. Then saved into a list called "liste".

Libraries

Scanning hashes of files in VirusTotal

First you have to get the real path of the file. Then with the path, we can get the hash of the file by using this code:

Get Hash

After doing it, we can proceed for scanning the hash of the file using VirusTotal API.

Saving the results to a file

After the scannning completed for a file. It writes the result to a file called "vt_results_exe.csv". It writes all the scores that comes from VirusTotal. In terminal you can see which process has scanned.(vt_Results_exe file will be stored in the C:/Users/{username})
Terminal Results

About

Scanning all the running .exe files in device with VirusTotal

Topics

python virustotal hash-scan process-report windows-file-scanning

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages