VirusTotal: Scan File
Description
This step submits a file to VirusTotal for malware scanning. You provide the local file path, and the step uploads it to VirusTotal for analysis. The step returns a scan ID that you can use with the File Scan Report step to retrieve the results. Use this step in workflows that check downloaded files for malware before processing, or scan email attachments as part of security automation.
References:
- Documentation URL: https://developers.virustotal.com/reference/files-scan
- URL for API Request: https://www.virustotal.com/api/v3/files
1.1.1 Configurations
Configuration tab:
| No. | Field Name | Description |
|---|---|---|
| 1 | Step name | Specify a unique name for the step. The name has to be unique in a single workflow. This is a mandatory field. |
| 2 | Accept value as variable / static | Leave checkbox unchecked to accept API Key value from a field in the previous steps of the stream using a drop down list. Else enable checkbox for API Key field to appear as Text box. |
| 3 | API Key | Specify or select the unique, public API key generated after signing up the Virus Total account. This is a mandatory field. |
Input tab:
| No. | Field Name | Description |
|---|---|---|
| 1 | File To Scan | Select the file you want to scan from the file path. Note: Allowed file size limit is 650MB. |
| 2 | Browse | Click to browse the file that you want to scan. |
Output tab:
| No. | Field Name | Description |
|---|---|---|
| 1 | JSON Output | Specify the output field to hold the result of the successful plugin execution. Default value: JSONOutput |