An easy way to quickly test an executable via Virus Total is to simply download the PCAPNG (session PCAP)
Open up the session PCAP and follow the TCP Stream
Find the download and recreate the URL (example: 104.37.245.82:8888/32.rar <<do NOT click)
Upload the URL exe to Virus Total
Verify that the binary is malicous.
Comments