MalScan is a simple PE File Heuristics Scanners written in python that you can use to quickly analyze a PE file and find out whether anything suspicious exists. It is a simple tool so doesn't offers much fancy features. You are free to extend it or do whatever you want with it.
Things Supported
- Information About file such as MD5, SHA1, Timestamp
- PEiD Signature Check
- Custom Yara Rules Integration
- Section, Imports, Exports, Resources and TLS Callbacks Overview
- Provides some custom heuristics :-)
Installing
You need to have Python 2.7 installed on your machine. The additional requirement is yara-python.
git clone https://github.com/Ice3man543/MalScan.git .
cd MalScan
python malscan.pyUsage
Simply run with the name of file you want to check.
Analysis Linux Mac MalScan Malware Malware Analysis Malware Static Anlysis PE PE File Python Python Malware Analysis Static Analysis TLS Yara