728x90
About a year ago, Rob had a diary entry about checking a file from Process Explorer with VirusTotal.
Did you know you can have all EXEs of running processes scanned with VirusTotal?
In Process Explorer, add column VirusTotal:
Enable VirusTotal checks:
And accept the VirusTotal terms:
(update: as you can see, by default Process Explorer only submits hashes to VirusTotal, not files, unless you explicitly instruct it to submit a file).
And now you can see the VirusTotal scores:
Process Explorer is not the only Sysinternals tool that comes with VirusTotal support. I'll showcase more tools in upcoming diary entries.
Sysinternals: http://technet.microsoft.com/en-us/sysinternals
VirusTotal: https://www.virustotal.com/
728x90
'security_downloads' 카테고리의 다른 글
| Sigcheck and VirusTotal (0) | 2015.07.23 |
|---|---|
| Autoruns and VirusTotal (0) | 2015.07.23 |
| RFC 7540 - HTTP/2 protocol (0) | 2015.06.17 |
| POODLE is the brown M&Ms of security (0) | 2015.05.01 |
| Loading A Weaponised Interactive PowerShell Session With Metasploit (0) | 2015.04.30 |