A python phishing script for malware scanning , malware Scanner computes a file's SHA-256 hash and checks its status on VirusTotal. It reads files efficiently, scrapes analysis results, and includes basic error handling for quick malware detection.
- For Debian (Ubuntu, Kali-Linux, Parrot)
sudo apt install git && apt install python3
- For Termux
sudo apt install git && apt install python3
git clone https://github.com/Ap1311/Malware-Scanner.git
cd Malware-Scanner
git clone https://github.com/Ap1311/Malware-Scanner.git && cd APhisher && python3 APhisher.py
| OS | Support Level |
|---|---|
| Linux | Excellent |
| Android | Excellent |
| Windows | Unsupported (Use docker/virtual-box/vmware) |
| BSD | Never tested |
SHA-256 Hash Calculation -Reads a file in 64KB chunks to efficiently compute its SHA-256 hash.
VirusTotal Integration (Web Scraping Approach) -Uses the computed hash to check for malware reports on VirusTotal.
Automated Web Scraping -Extracts analysis results from VirusTotal using BeautifulSoup.
Quick Malware Detection -Checks if the file is flagged as malicious by security vendors.
Error Handling for Missing Files -Displays usage instructions if no file is provided.
Lightweight and Easy to Use -Requires only a Python environment and internet access.
TermuxUbuntuKali-LinuxParrot
- Run the script
- Choose a Website
- Wait sometimes for setting up all
- Send the generated link to victim
- Wait for victim login. As soon as he/she logs in, credentials will be captured
Run the script from the command line with the target file:
python mal_scan.py filename.ext
Example:
python mal_scan.py sample.exe
The script will: -Compute the SHA-256 hash of the file. -Check the hash against VirusTotal’s database. -Display whether the file is flagged as malicious or not. Common Issues and Solutions Issue Cause Solution "Please Enter File name" error No filename provided as an argument. Run the script with a file: python mal_scan.py sample.exe "File not found in the VirusTotal database" The file’s hash is not in VirusTotal’s database. Upload the file manually to VirusTotal for analysis. "Data not found. Site must be busy." VirusTotal may have changed its HTML structure or is blocking scrapers. Use the VirusTotal API instead of web scraping. Script crashes with connection errors. No internet connection or VirusTotal blocking requests. Check the internet connection, or use a proxy/VPN if needed. Python syntax errors Running in Python 3 but using Python 2 syntax. Update the script for Python 3 (print statements, requests handling). Disclaimer This script does not scan files directly; it only checks their SHA-256 hash against the VirusTotal database. VirusTotal does not guarantee 100% accuracy, as some malware may not be detected. Use responsibly; scanning files without permission may violate privacy laws. Web scraping VirusTotal may be blocked; using the official API is recommended for long-term reliability.
This tool is developed for educational purposes. Here it demonstrates how Malware Scanning works. You have your own responsibilities and you are liable to any damage or violation of laws by this tool. The author is not responsible for any misuse of Malware-Scanner!
