VirusTotal Premium API
By Maltego Technologies
Leverage 15 years of malicious sightings to enrich your organization’s malware observations and logs.
VirusTotal Premium API Transforms for Maltego
VirusTotal provides a service to analyze files and URLs for viruses, worms, trojans, and other kinds of malicious content. It is one of the most renowned and best-rated data sources within the cybersecurity sphere, particularly when it comes to malware research.
Upon submitting a file or URL, basic results are shared with the submitter and between the examining partners who use results to improve their own systems. It inspects items with over 70 antivirus scanners and URL/domain blacklisting services in addition to a myriad of tools to extract signals from the studied content. This core analysis is also the basis for several other features, including the VirusTotal Community: A network that allows users to comment on files and URLs and share notes with each other. VirusTotal can be useful in detecting malicious content and also in identifying false positives—Normal and harmless items detected as malicious by one or more scanners.
Through collaboration between members of the antivirus industry, researchers, and end-users of all kinds, VirusTotal has built a database of over two billion analyzed files thus filling a gap for many companies which experience a lack of resources to collect their own malware samples and related indicators of compromise (IOCs).
The Premium API is a paid solution available for enterprise users. This is an extension of the VirusTotal Public API and can thus return more threat context, as well as expose advanced threat hunting, malware discovery endpoints, and functionality, such as the VirusTotal Intelligence Search queries. More information on the VirusTotal APIs can be found here .
The Premium API has many advantages over the Public API such as:
- A strict Service License Agreement (SLA) that guarantees availability and readiness of data
- Has more endpoints (similarity search, clustering, behavioral information, etc.), and returns richer information for the items looked up, exposes whitelisting, and trusted source information
- Allows you to choose a request rate and daily quota allowance that best suits your needs
Typical Users of VirusTotal Premium API Data
- Threat Intelligence Teams
- Incident Response Teams
- Cyber and Digital Forensics Teams
- Security Analysts
- SOCs and CERTs
- Red Teams and Penetration Testers
- Trust and Safety Teams
Identify Evolution of Threat Networks
Visualize Actionable Malware IOCs
Enrich Existing Threat Intelligence
Reduce False Positives
Leverage VirusTotal Private API Data for
Corporate Infrastructure Breach and Abuse Mitigation
Pricing & Access
For full solution access, plug in your existing API key or reach out to us using the form below for purchase inquiry.
To purchase VirusTotal Premium API subscription, contact: https://www.virustotal.com/gui/contact-us/premium-services
If you are interested in a trial of VirusTotal data, check out the VirusTotal Public API.
Automate Investigations with Maltego Machines – Part 2: Our New Cybersec & SOCMINT Machines
Webinar | Visual Investigations: Speed Up Incident Response, Forensics Analysis, and Hunting!
Ask us about the Data sources
About VirusTotal Premium API
VirusTotal was founded in 2004 as a free service that analyzes files and URLs for viruses, worms, trojans, and other kinds of malicious content. Our goal is to make the internet a safer place through collaboration between members of the antivirus industry, researchers, and end-users of all kinds. Fortune 500 companies, governments, and leading security companies are all part of the VirusTotal community, which has grown to over 500,000 registered users. VirusTotal became part of Google in 2012.
For more information, visit https://www.virustotal.com/gui/.