https://github.com/whitehatboy005/automated-malware-analysis

The Automated Malware Analysis Tool is a security-focused Python application that scans files for potential malware threats. It integrates static analysis, behavioral monitoring, and VirusTotal API checks to provide comprehensive insights into file safety.
https://github.com/whitehatboy005/automated-malware-analysis

customtkinter gui malware-analysis malware-detection python3 virustotal-api

Last synced: about 1 year ago
JSON representation

The Automated Malware Analysis Tool is a security-focused Python application that scans files for potential malware threats. It integrates static analysis, behavioral monitoring, and VirusTotal API checks to provide comprehensive insights into file safety.

• Host: GitHub
• URL: https://github.com/whitehatboy005/automated-malware-analysis
• Owner: whitehatboy005
• License: mit
• Created: 2025-02-11T10:03:48.000Z (over 1 year ago)
• Default Branch: main
• Last Pushed: 2025-02-11T10:33:49.000Z (over 1 year ago)
• Last Synced: 2025-04-05T18:13:35.568Z (about 1 year ago)
• Topics: customtkinter, gui, malware-analysis, malware-detection, python3, virustotal-api
• Language: Python
• Homepage:
• Size: 15.6 KB
• Stars: 4
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE.md

Awesome Lists containing this project

README

          
# 🛡️ Automated Malware Analysis Tool

[![License](https://img.shields.io/github/license/whitehatboy005/Automated-Malware-Analysis)](LICENSE.md)

The Automated Malware Analysis Tool is a security-focused Python application that scans files for potential malware threats. It integrates static analysis, behavioral monitoring, and VirusTotal API checks to provide comprehensive insights into file safety.

## 🚀 Features

- **Static Analysis**

  - Uses signature-based detection to identify malware.

  - Extracts PE file metadata and hashes for deep inspection.

- **Behavior Monitoring**

  - Observes system processes and registry changes for suspicious activity.

  - Detects unauthorized modifications in startup keys.

- **VirusTotal Integration**

  - Queries VirusTotal to check if the file is flagged by known antivirus engines.

  - Uploads new files for analysis if they are not found in the VirusTotal database.

- **Automated Reporting**

  - Stores scan results in a database.

  - Generates a detailed log of all scans for further analysis.

- **User-Friendly GUI**

  - Built with `customtkinter` for an intuitive scanning experience.

  - Displays real-time status updates and scan results.

## 🛠️ Technologies Used

- **Python**: Core programming language.

- **SQLite**: Stores analysis reports for review.

- **Requests**: Fetches data from VirusTotal API.

- **Psutil**: Monitors running processes.

- **Tkinter (CustomTkinter)**: Provides a user-friendly interface.

- **PEFile**: Parses Portable Executable (PE) files for static analysis.

## Obtaining VirusTotal API Key

1. Go to [VirusTotal API](https://www.virustotal.com/)

2. Sign in / Sign up

3. Copy your API key

4. Paste it in API_KEY inside `config.env`

## Model ouput for not found malware

![Screenshot 2025-02-11 155913](https://github.com/user-attachments/assets/96fca467-dea1-4b5d-9e44-7680178ca517)

## Model ouput for found malware

  ![Screenshot 2025-02-11 155939](https://github.com/user-attachments/assets/4c6d52ee-4773-49c0-ae8e-11b73642f99a)

## ⚙️ Installation

## Clone the Repository

```bash

git clone https://github.com/whitehatboy005/Automated-Malware-Analysis

cd Automated-Malware-Analysis

```

## Install Dependencies

```bash

pip install -r requirements.txt

```

## Configure Environment Variables

```bash

notepad config.env

```

## Run the Program

```bash

python main.py

```

#

## 📝 License

This project is licensed under the terms of the [MIT license](LICENSE.md).