VirusTotal Reviews

Name: VirusTotal
Brand: VirusTotal
Rating: 4.4 (11 reviews)

4.4 out of 5

11 reviews
100% willing to recommend

121 followers

What is VirusTotal?

VirusTotal is an essential tool for gathering malware information, analyzing compromised data, and monitoring malicious campaigns.

Get the Anti-Malware Tools Buyer's Guide and find out what your peers are saying about VirusTotal, Microsoft Defender for Endpoint, SentinelOne Singularity Complete and more!

VirusTotal is the #3 ranked solution in top Anti-Malware Tools and top Threat Intelligence Platforms. PeerSpot users give VirusTotal an average rating of 8.8 out of 10. VirusTotal is most commonly compared to Microsoft Defender for Endpoint: VirusTotal vs Microsoft Defender for Endpoint. VirusTotal is popular among the large enterprise segment, accounting for 58% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 17% of all views.

Buyer's Guide

Anti-Malware Tools

January 2025

Get the category report

Helped 848,253 peers since 2012

Featured VirusTotal reviews

Chinmay Banerjee

Advisor Adtech/Martech/API product/project Engineering at Fiserv

There are two gray areas I still need to explore. I have worked with VirusTotal because it easily integrates with over seventy antivirus scanners and blacklisting services. In addition to those there is much scope to improve and add other services or integrations. The areas for improvement are that VirusTotal is not using much AI or generative AI models, while other competitors are starting to build them. For example, VirusTotal's work is based on the setup done by their engineers. If you want to do scanning or protection activities for a specific site, app, or device, that is the area VirusTotal is currently focused on. But other competitors are building AI models that can do things like left-side scanning and provide auto-generated reports. VirusTotal has predefined reports, but there is a lot of manual effort involved. Secondly, the API is very limited if I want to integrate VirusTotal with other applications. They need to build more connectors and provide support for Webhook connectors for the API. If you can't build your own connector, it's always good to have provisions for Webhook setup connectors across platforms. Thirdly, Kaspersky, a competitor of VirusTotal, is using a methodology called "gatekeeper." A gatekeeper is a security system that protects the inside of a building from outside threats. This is the model Kaspersky is currently using. You have your website set up, but the entire army of VirusTotal or Kaspersky is standing guard, protecting you from the first gate itself. Right now, VirusTotal detects threats from your domain, but it is always better to verify inside the domain and protect it from the first level when people or malware are entering. This first level of protection is lacking in VirusTotal right now. The security bridge and protection gate are missing.

Read full review

Muhammad Hanif

Cyber Security Senior Consultant at Inspira Enterprise

I am working in GRC, and sometimes VirusTotal is just a tool. We mostly use VirusTotal for pinging suspicious IP addresses. Whenever there is a suspicious IP, we put it inside VirusTotal for further details. We use it to get details about IP originations or when we need to check IPs, URLs, or…

Read full review

Yu-Lin Lee

Sr. Threat Researcher at Trend Micro

Using VirusTotal is my responsibility in my current job. I have been utilizing it for security intelligence purposes It is developed by Google, which means its search algorithm and efficiency are higher than other tools. It is quite simple for anyone if they just want to check some suspicious…

Read full review

VirusTotal mindshare

Product category:

As of April 2025, the mindshare of VirusTotal in the Anti-Malware Tools category stands at 5.4%, down from 7.3% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Anti-Malware Tools

Key learnings from peers

Valuable Features

VirusTotal's worldwide malware database is highly valuable, offering malware detection, IP reputation checks, and URL analysis. Its API systems enable automation, while its community feature provides threat intelligence. Users appreciate the ability to analyze large files with various sandboxes, access detailed malware insights, and identify file signatures for threat detection. Google’s development enhances efficiency. Accurate information is provided, including multi-scanner integration and comprehensive threat data, aiding in avoiding false positives and understanding malicious behaviors.

"I have never had any problems with stability or bugs while using VirusTotal."
"VirusTotal provides 95% to 98% accurate information."
"VirusTotal provides 95% to 98% accurate information."

Room for Improvement

VirusTotal requires enhancements in its user interface and automation features and needs clearer query and API documentation. It lacks advanced AI integration compared to competitors and should improve threat detection by strengthening internal domain protection. False positives need reduction and its API needs more support. Enhanced threat intelligence correlation, better threat telemetry, clearer score accuracy, more affordable licensing options, and increased promotion in the Middle East are also suggested improvements.

"They can improve the telemetry. Whenever we handle a sample, they cannot provide any information about a victim."
"I would like to see improvements in the score consistency and accuracy."
"I would like to see improvements in the score consistency and accuracy."

ROI

The ROI from VirusTotal is positive.

Pricing

Many users find VirusTotal pricing reasonable, often seeing it as a worthwhile investment despite some considering it expensive. Several noted economical aspects, especially when negotiating costs. Expenses are usage-dependent, with options like free trials and licenses to explore. Enterprises utilize strategies such as managing free licenses across multiple accounts to minimize costs. Engaging with VirusTotal for a custom setup is encouraged to tailor pricing to specific requirements.

"We are using VirusTotal with free licenses, managing the license limits across three or four accounts, thus incurring no costs."
"The pricing is reasonable."
"VirusTotal is an expensive solution."

Popular Use Cases

Users employ VirusTotal for malware analysis, cybersecurity forensic cases, and data leak investigations. They monitor malicious campaigns using IOCs and YARA rules. The API helps in determining IP address threats, analyzing file hashes, URLs, and detecting phishing. Users integrate VirusTotal in productions for security intelligence, analyzing suspicious files, checking URLs, and investigating security alerts in incident response processes to ensure file and link integrity. It is essential for sectors like retail and FinTech.

Service and Support

VirusTotal's customer service and support receive mixed feedback. Some users find their technical support active and effective, while others are dissatisfied with response times and structural organization. Communication is primarily through support emails, and phone support may not always work. Subscription plans determine the level of support. Customized packages are available, and technical support ratings are often high, though some licensing processes may experience delays. Many rely on the platform's comprehensive information for assistance.

Deployment

Users found VirusTotal's initial setup mostly straightforward and easy. Integration with APIs was simple for many, though some found clarity lacking in APIs. The process varied based on API use for websites, apps, or systems. Guidance from VirusTotal's user manual and support was helpful. The setup involved three days to a week and required minimal personnel. Web-based access was seamless, though cybersecurity knowledge influenced difficulty levels for some users.

Scalability

VirusTotal's scalability receives mixed assessments. Organizations note the ability to integrate with tools and APIs, supporting its scalability while being quota-dependent. Users found limitations with the free version regarding file size and batch scanning capabilities. Some report no significant scalability limitations, whereas others highlight room for improvement, particularly concerning quota restrictions when processing numerous URLs. It remains suitable but not extensively tested in very large environments.

Stability

VirusTotal is praised for its remarkable stability. Users consistently find it reliable, with minimal issues related to performance or stability. While some mention occasional non-responsiveness or minor glitches, most attest to its consistent availability without breakdowns. The system maintains steady signatures and decisions, not easily swayed by public input, ensuring a reliable experience. Many users have not encountered stability problems or bugs, indicating VirusTotal’s robust and dependable performance.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Anti-Malware Tools Buyer's Guide for additional reliable information.

Review data by company size

By reviewers

By visitors reading reviews

Top industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

10%

Government

University

Manufacturing Company

Comms Service Provider

Educational Organization

Healthcare Company

Retailer

Insurance Company

Energy/Utilities Company

Hospitality Company

Media Company

Legal Firm

Construction Company

Wholesaler/Distributor

Real Estate/Law Firm

Non Profit

Pharma/Biotech Company

Recreational Facilities/Services Company

Outsourcing Company

Marketing Services Firm

Transportation Company

Performing Arts

Consumer Goods Company

Wellness & Fitness Company

Compare VirusTotal with alternative products

Learn more about VirusTotal

VirusTotal enables users to examine malware hashes, create alerts for targeted attacks, and utilize IOCs and YARA rules to detect threats. Its private scanning capabilities ensure discreet file analysis, while the API assesses IP address threats. Widely used in sectors like retail and FinTech, VirusTotal significantly boosts productivity.

What are the most valuable features of VirusTotal?

Worldwide malware information database: Extensive global repository of malware data.
Integration with 70+ antivirus scanners: Collaborates with numerous antivirus and blacklisting services.
API systems for reputation checks: Multiple API systems to verify reputations.
Detecting, blocking, and removing threats: Robust threat mitigation capabilities.
Blocking phishing attempts: Effective in preventing phishing attacks.
Scanning the dark web: Monitors dark web for compromised emails.
Privacy in threat data collection: Ensures privacy while gathering threat data.

What benefits should users look for in VirusTotal reviews?

Enhanced threat detection: Improved accuracy in identifying threats.
Increased productivity: Streamlined processes and faster incident response.
Seamless integration: Compatibility with existing security frameworks.
Comprehensive threat intelligence: Access to extensive threat data.
Privacy assurance: Ensures user data confidentiality.

VirusTotal is highly valued in industries like retail and FinTech, where it assists in examining malware hashes, creating alerts, and utilizing IOCs and YARA rules for advanced threat detection. Despite its valuable features, there is room for improvement in its interface, automation, AI integration, and API connectability, areas where competitors sometimes offer more advanced solutions.