VirusTotal Uploader
VirusTotal Uploader (VTup) adds an Explorer context menu that allows you to right click on a file detected as suspicious by any malware scanner or Anti-Virus (AV) application and send it to VirusTotal (VT) for further analysis.
1. Read the VTup online documentation.
VirusTotal Uploader
2. The install process for VTup is described on the download page for the utility.
Read the page before downloading to become familiar with the utility; more details are provided on the pages linked in the Prepare stage of this guide.
On the VTup download page, click on the
Install VirusTotal Uploader button.
On the
Do you want to run or save ... Action Bar
Select
Run
Follow the instructions presented during the install.
3. Launch Windows Explorer and navigate to the quarantine folder of the scanner or AV program.
For each file in quarantine, right click and select
Send to VirusTotal
A VirusTotal page is opened in you browser with information similar to the samples below. The VT summary analysis page consists of the following:
No code has to be inserted here.
There are additional research tabs at the bottom of the summary page that might need to be referenced in order to make a decision.
issetup.dll: None of the AV engines determined that the file is malicious (Detection ratio 0 / 50)
The
Probably harmless! green bar indicates that the file is probably safe to restore to it's original location.
uninsooo.exe: One of the AV engines determined that the file is malicious (Detection ratio 1 / 47)
This report provides information on the AV engine that detected the file as malicious. You can read more information on the research tabs.
The
Probably harmless! green bar indicates that the file is probably safe to restore to it's original location.
acceptor.uno.dll: One of the AV engines determined that the file is malicious (Detection ratio 1 / 48)
This report provides information on the AV engine that detected the file as malicious. You can read more information on the research tabs.
The report on this file is indeterminate, there is no
Probably harmless! green bar.
You have to decide the disposition of the file based on the Detection ratio and by reading the information on the additional research tabs.
If SF members are assisting you, post a screen shot of the VirusTotal report for any file in question.
See:
How to attach files and screen shots