Android malware identification using VirusTotal

VirusTotal is a free service that can be used to analyze suspicious files and URLs for malware. As you may have noticed, Android applications have an .apk extension, so if you find a suspicious file, you may want to upload it to VirusTotal to check whether it's actually malicious. Why is this better than scanning with an antivirus scanner? It will scan your file with at least 55 antivirus engines! What's more, you may not want to upload any files from your real cases to the internet, but it's not a problem, as you can search for files that have already been uploaded using their hash sums, MD5, SHA1, or SHA256. This service is available here:

We have already found ...

Get Learning Android Forensics - Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.