VirusTotal

This ihandler submits the captured malware samples to the VirusTotal service for further analysis.

Configuration

apikey

The VirusTotal API-Key.

file

SQLite database file used to cache the results.

Example config

ihandlers/virustotal.yaml
- name: virustotal
  config:
    # grab it from your virustotal account at My account -> Inbox -> Public API
    apikey: "........."
    file: "@DIONAEA_STATEDIR@/vtcache.sqlite"