Virusshare

logo

Virusshare

Details

Author

Nils Kuhnert, CERT-Bund

Version

2.0

License

AGPL-V3

Website

https://github.com/BSI-CERT-Bund/cortex-analyzers

Requires Registration

No

Requires Subscription

No

Free Subscription Available

No

DataType Supported

hash, file

Service Homepage

Virusshare

Description

Search for MD5 hashes in Virusshare.com hash list

Configuration

Name

Description

path

Define the path to the stored data

Additional details from the README file:

VirusShare

VirusShare is a repository of malware samples to provide security researchers, incident responders, forensic analysts, and the morbidly curious access to samples of live malicious code.

The analyzer enables local searching for md5 hashes in Virusshare.com hash list.

Requirements

  • Download the VirusShare hashlists. For convenience the getHashes.sh script is provided

  • In the analyzer parameters configure the path of downloaded hashlists folder.