Skip to content

Malwares#

README

Malwares#

Malwares is a web service to collect, analyze and detect various malicious codes or malwares such as Trojans, Viruses, Worms so that customers or end-users can make proper security policies to take countermeasures against security threats.

The analyzer comes in a two flavour that permit you to query different data types (file, hash, domain, ip) or submit new sample for analysis (file, hash).

Requirements#

You need a valid Malware API subscription to use the analyzer.

  • Provide your API key as values for the key parameter.

Malwares_Scan#

Author: LDO-CERT
License: AGPL-V3
Version: 1.0
Supported observables types:
- file
- url
Registration required: True
Subscription required: True
Free subscription: True
Third party service: https://www.malwares.com/

Description#

Use Malwares' API to scan a file or URL.

Configuration#

key Malwares.com API Key
Default value if not configured N/A
Type of the configuration item string
The configuration item can contain multiple values False
Is required True

Templates samples for TheHive#

Malwares: long report

Malwares_GetReport#

Author: LDO-CERT
License: AGPL-V3
Version: 1.0
Supported observables types:
- file
- hash
- domain
- ip
Registration required: True
Subscription required: True
Free subscription: True
Third party service: https://www.malwares.com/

Description#

Get the latest Malwares report for a file, hash, domain or an IP address.

Configuration#

key Malwares.com API Key
Default value if not configured N/A
Type of the configuration item string
The configuration item can contain multiple values False
Is required True

Templates samples for TheHive#

Malwares: long report