Threat Lookup - VirusTotal workflow

  • Freigeben Version: Australia
  • Aktualisiert 12. März 2026
  • 1 Minute Lesedauer

    • The Threat Lookup - VirusTotal workflow performs a lookup on selected observables. If the observables are of a type recognized by VirusTotal, the observables are scanned for malware, and the results are returned.

    Vorbereitungen

    Role required: admin

    Warum und wann dieser Vorgang ausgeführt wird

    This workflow is triggered by the Security Operations Integration - Threat Lookup capability when you perform a threat lookup on one or more observables, and the VirusTotal implementation is selected. For more information, see Perform lookups on observables.

    Abbildung : 1. Threat Lookup - VirusTotal workflow
    Threat Lookup - VirusTotal workflow

    For information on the activities used by this workflow, see Common Security Operations integration flows and orchestration activities.