Ready to Start Your Career?

SSMA - Simple Static Malware Analyzer

Jimakoch 's profile image

By: Jimakoch

December 3, 2016


SSMA is a simple malware analyzer written in Python 3.


  • Searches for websites, e-mail addresses, IP addresses in the strings of the file.

  • Looks for Windows functions commonly used by malware.

  • Get results from VirusTotal and/or upload files.

  • Malware detection based on Yara-rules -

  • Detect well-known software packers.

  • Detect the existence of cryptographic algorithms.

  • Detect anti-debug and anti-virtualization techniques used by malware to evade automated analysis.

  • Find if documents have been crafted to leverage malicious code.


git clone SSMAsudo pip3 install -r requirements.txtpython3 -h

You can just statically scan the file or upload to VirustTotal using your API-KEY.


python3 file.exepython3 -k api-key file.exe

Scan documents (i.e. MS Office Word):


python3 -d doc.docx

To get ssdeep hashes use requirements_with_ssdeep.txt Requirements:Python 3Download

Schedule Demo