An analyst needs to rapidly and accurately determine whether a suspicious file is a known type of malware. Which tool would be the BEST for this initial analysis?
VirusTotal is a free online service that analyzes files and URLs for viruses, worms, trojans, and other kinds of malicious content detected by antivirus engines and website scanners. It is a form of file analysis that leverages multiple antivirus solutions and website scanners to provide a comprehensive view of a file's reputation. Other options, such as Wireshark and tcpdump, are more suitable for packet capture and network traffic analysis, which would not be as effective for a file’s quick malware determination.
Learn More
AI Generated Content may display inaccurate information, always double-check anything important.
What types of malware can VirusTotal detect?
How does VirusTotal analyze files and URLs?
What are the limitations of using VirusTotal for malware analysis?