GCP virus_total Mappings

VirusTotal analyzes suspicious files, domains, IPs and URLs to detect malware and other breaches, automatically share them with the security community. It's a web-based scanner that utilizes over 70 antivirus scanners and URL/blacklisting services, among other tools, to extract signals from uploaded content.

Mappings

Capability ID Capability Description Category Value ATT&CK ID ATT&CK Name
virus_total Virus Total protect significant T1566 Phishing
virus_total Virus Total protect partial T1566.001 Spearphishing Attachment
virus_total Virus Total protect significant T1059 Command and Scripting Interpreter
virus_total Virus Total protect significant T1598.003 Spearphishing Link
virus_total Virus Total protect significant T1566.002 Spearphishing Link