{"id":25236865,"url":"https://github.com/whitehatboy005/automated-malware-analysis","last_synced_at":"2025-04-05T18:13:38.663Z","repository":{"id":276954681,"uuid":"930846756","full_name":"whitehatboy005/Automated-Malware-Analysis","owner":"whitehatboy005","description":"The Automated Malware Analysis Tool is a security-focused Python application that scans files for potential malware threats. It integrates static analysis, behavioral monitoring, and VirusTotal API checks to provide comprehensive insights into file safety.","archived":false,"fork":false,"pushed_at":"2025-02-11T10:33:49.000Z","size":16,"stargazers_count":4,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-04-05T18:13:35.568Z","etag":null,"topics":["customtkinter","gui","malware-analysis","malware-detection","python3","virustotal-api"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/whitehatboy005.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2025-02-11T10:03:48.000Z","updated_at":"2025-02-28T07:38:29.000Z","dependencies_parsed_at":"2025-02-11T11:33:25.062Z","dependency_job_id":null,"html_url":"https://github.com/whitehatboy005/Automated-Malware-Analysis","commit_stats":null,"previous_names":["whitehatboy005/automated-malware-analysis"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/whitehatboy005%2FAutomated-Malware-Analysis","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/whitehatboy005%2FAutomated-Malware-Analysis/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/whitehatboy005%2FAutomated-Malware-Analysis/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/whitehatboy005%2FAutomated-Malware-Analysis/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/whitehatboy005","download_url":"https://codeload.github.com/whitehatboy005/Automated-Malware-Analysis/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247378139,"owners_count":20929297,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["customtkinter","gui","malware-analysis","malware-detection","python3","virustotal-api"],"created_at":"2025-02-11T15:32:20.606Z","updated_at":"2025-04-05T18:13:38.639Z","avatar_url":"https://github.com/whitehatboy005.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# 🛡️ Automated Malware Analysis Tool\n[![License](https://img.shields.io/github/license/whitehatboy005/Automated-Malware-Analysis)](LICENSE.md)\n\nThe Automated Malware Analysis Tool is a security-focused Python application that scans files for potential malware threats. It integrates static analysis, behavioral monitoring, and VirusTotal API checks to provide comprehensive insights into file safety.\n\n## 🚀 Features\n- **Static Analysis**\n  - Uses signature-based detection to identify malware.\n  - Extracts PE file metadata and hashes for deep inspection.\n\n- **Behavior Monitoring**\n  - Observes system processes and registry changes for suspicious activity.\n  - Detects unauthorized modifications in startup keys.\n\n- **VirusTotal Integration**\n  - Queries VirusTotal to check if the file is flagged by known antivirus engines.\n  - Uploads new files for analysis if they are not found in the VirusTotal database.\n\n- **Automated Reporting**\n  - Stores scan results in a database.\n  - Generates a detailed log of all scans for further analysis.\n\n- **User-Friendly GUI**\n  - Built with `customtkinter` for an intuitive scanning experience.\n  - Displays real-time status updates and scan results.\n\n## 🛠️ Technologies Used\n- **Python**: Core programming language.\n- **SQLite**: Stores analysis reports for review.\n- **Requests**: Fetches data from VirusTotal API.\n- **Psutil**: Monitors running processes.\n- **Tkinter (CustomTkinter)**: Provides a user-friendly interface.\n- **PEFile**: Parses Portable Executable (PE) files for static analysis.\n\n## Obtaining VirusTotal API Key\n1. Go to [VirusTotal API](https://www.virustotal.com/)\n2. Sign in / Sign up\n3. Copy your API key\n4. Paste it in API_KEY inside `config.env`\n\n## Model ouput for not found malware\n![Screenshot 2025-02-11 155913](https://github.com/user-attachments/assets/96fca467-dea1-4b5d-9e44-7680178ca517)\n\n## Model ouput for found malware\n  ![Screenshot 2025-02-11 155939](https://github.com/user-attachments/assets/4c6d52ee-4773-49c0-ae8e-11b73642f99a)\n\n## ⚙️ Installation\n## Clone the Repository\n```bash\ngit clone https://github.com/whitehatboy005/Automated-Malware-Analysis\ncd Automated-Malware-Analysis\n```\n## Install Dependencies\n```bash\npip install -r requirements.txt\n```\n## Configure Environment Variables\n```bash\nnotepad config.env\n```\n## Run the Program\n```bash\npython main.py\n```\n#\n## 📝 License\n\nThis project is licensed under the terms of the [MIT license](LICENSE.md).\n\n\n\n\n\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwhitehatboy005%2Fautomated-malware-analysis","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fwhitehatboy005%2Fautomated-malware-analysis","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwhitehatboy005%2Fautomated-malware-analysis/lists"}