SFA (Static File Analysis).

Analysis malicious files in deep with clamscan and yara rules.

Features:

  • Clamscan extracts embedded files and makes json report.
  • Clamscan check password on zip encrypted.
  • Extract file from URL with THUG.
  • Analyse json report and make json trees to consolidate informations.
  • Extract patterns (pattern.db) with the ability to use the yara rules.
  • Scan embedded files and root file with yara rules: 2 levels
  • Compute risk score .
  • Extract IOC on yara rules match.
  • Extract text from image by OCR.
  • Decompile JAR & CLASS java with procyon.
  • Check VirusTotal & INTEZER & Hybrid Analysis & APPANY.RUN & OTX & XFORCE & MISP
  • Create PNG graph for fast analysis.
  • Output result tree json in a file.
Analyze File
File to analyze.
Use API KEY for authentification.
Analyze URL
URL to analyze.
Use API KEY for authentification.