Home > Computer > Faster and Easily Upload Suspicious Files to ThreatExpert for Analyzing
Donation Goal
Donate Now Goal amount for this year: 799 USD, Received: 100 USD (13%)
Please donate to help support this website. The funds will be used to purchase owned license of LiteSpeed Web Server Enterprise (2-CPU). It provides superior performance in terms of raw speed, scalability and anti-DDoS capabilities.

Faster and Easily Upload Suspicious Files to ThreatExpert for Analyzing

Posted By Raymond In Category: Computer

Oct
5
2008

Whenever I have downloaded a suspicious file from an untrusted location, I do not count on one antivirus alone even if I am using Kaspersky. No doubt that Kaspersky antivirus is very good in detecting both known and unknown viruses, but there are really good coders that can make malicious programs to be marked as safe by antivirus program.

Sad to say for some computer newbies, they depend so much on the installed antivirus program in their computer and they often accuse legitimate software as a virus just because their antivirus software says so. Imagine, there are millions of programs with billions lines of programming codes, it’s easy for a legitimate software to be accidentally flagged as a threat by an antivirus software. That’s why I’ve written an article on how to determine if a file is dangerous or not. If the file is tested clean with VirusTotal and ThreatExpert, I can be 90% sure that the file is clean even if someone tells me that the file malicious.

For VirusTotal, it already has a desktop version where you can right click on the suspicious file using your mouse and send it for scanning with 36 antiviruses. ThreatExpert also has one.


The ThreatExpert Submission Applet is a stand-alone tool that provides you with an quick easy way to submit your samples to ThreatExpert.

ThreatExpert Submission Applet

The submission applet produces reports identical to the alternative online submission but instead of requiring you to upload the sample through a browser, you can upload samples using a Windows application. I’ve tested the upload speed between using the online web version and desktop applet. Weirdly, the desktop applet tool has slightly faster upload speed than the online web version. The traffic monitoring tool (NetLimiter) which I use shows that ThreatExpert Submission Applet (teapplet.exe) uploads at 25KBps steadily. As for the online submission, the upload speed fluctuates and the most it can go up to 21.8KBps.

ThreatExpert Submission Applet saves me the trouble of launching my browser, wait for ThreatExpert’s website to load, go to the Submit Sample page and then upload. Now I can just run the applet from my desktop, browse for the suspicious file and upload. It is recommended that you sign up for a free account with ThreatExpert before you submit any files with the submission applet so you can easily access your own reports online.

This submission tool is only 931 KB in size and doesn’t require installation. Can run on Windows Vista 32/64-bit, XP and 2000. I wish that they could improve this tool and make it even easier for us to upload files to ThreatExpert by adding a function in right click context menu (Right click > Send To > ThreatExpert).

[ Download ThreatExpert Submission Applet ]


Related posts:
  • How To Easily Analyze and Get Detailed Report of Suspicious Files
  • Easily Upload Suspicious File to VirusTotal
  • Software Comparison: Upload Files to FTP From Right Click Menu
  • Easily Scan Suspicious File with 20 Malware Scanner
  • Scan Suspicious Files for FREE using Several Antivirus Engines
    • Doktor Notor

      Don’t forget Jotti’s malware scan ;)

    • KID

      you can make such a tool yourself too

    • f1tzy

      thanks mate, i always use site’s like these when looking at cracks/patches/keygens ect, or any other suspicious .exe file :)

    • http://www.raymond.cc/ Raymond

      I’ve written about Jotti last year. Check out the last point at Related Articles.

    • scorpion2046

      ray tnxs for informing this sotfware we Appreciate your hardwork & concern to us….

    • Only

      With VirusTotal, you can use the hash of a file (md5/sha1/sha256), if the hash is already in the database, no upload ^^.

    • Dk

      what if the size of the file is larger.It takes ages to upload if you have a slow internet connection.I think online antivirus come to good use only to scan files less than 2MB size.

    • syxxnyne69

      another awesome find raymond, may i also suggest virustotal uploader which obviously uploads to virus total for scanning you can get details at this link
      http://blog.hispasec.com/virustotal/23
      or for the download at this link
      http://www.virustotal.com/vtsetup.exe

      ive liked virustotal since i began using it and this tool is just another plus to the site

    • William Gunn

      well raymond, you could add it to the open with menu, i don’t know if it will work but you can try…

    • http://www.newbiesblogger.net Salman

      What about PC Tools Internet Security 2009 that you have post recently? Do you have test it? I have install to my computer (OS Windows) and right now the only antivirus on my computer is PC Tools Internet Security 2009 that come with antivirus? What is your recommendation? Do i need to install another antivirus. So far PC Tools Internet Security 2009 don’t detect any virus from my computer, but it’s good when detecting Worm.

    • Prashanth

      Perfect. This is what I want to use now n then.

    • JAMAL

      HAPPY BIRTHDAY GREAT SITE ,THNX RAYMOND

    • mnjdeep

      hey u have done a great job ..till now and hope that u continue to do this and dont forget that i would be waitin for ur email..

    • Khalid A. M Yahya

      HAPPY BIRTHDAY RAMOND & THANKS …

    Copyright © 2005-2012 - Raymond.CC Blog