diff --git a/analyzers/VirusTotal/README.md b/analyzers/VirusTotal/README.md
new file mode 100644
index 000000000..fb2a495fc
--- /dev/null
+++ b/analyzers/VirusTotal/README.md
@@ -0,0 +1,35 @@
+This analyzer let you run Virustotal services on several datatypes: 
+
+* _file_
+* _hash_
+* _domain_
+* _fqdn_
+* _ip_
+* _url_
+
+The program uses [VirusTotal API v3](https://developers.virustotal.com/v3.0/reference).
+
+Major improvements have been added with _VirusTotal\_GetReport_ flavor. Now, with the classical scan results, the report can display: 
+
+* A Summary: with qualitative informnation about the detection
+
+![](assets/virustotal-summary-report.png)
+
+
+* Crowdsourced YARA results with known Yara rules to detect the threat
+
+![](assets/virustotal-yara.png)
+
+
+* Contacted IP addresses, domains and URLs if any
+* Crowdsourced IDS results with known IDS rules to detect the threat
+* Sandbox verdict if any
+
+![](assets/virustotal-ids-sandbox-urls.png)
+
+#### Extracted Observables
+
+Moreover, these domains, IP addresses, URLs as well as detection YARA and IDS rules reported are added to the extracted Observables, ready
+to be imported and actioned in TheHive.
+
+![](assets/virustotal-extracted-observables.png)
diff --git a/analyzers/VirusTotal/assets/virustotal-extracted-observables.png b/analyzers/VirusTotal/assets/virustotal-extracted-observables.png
new file mode 100644
index 000000000..2a9d14a10
Binary files /dev/null and b/analyzers/VirusTotal/assets/virustotal-extracted-observables.png differ
diff --git a/analyzers/VirusTotal/assets/virustotal-ids-sandbox-urls.png b/analyzers/VirusTotal/assets/virustotal-ids-sandbox-urls.png
new file mode 100644
index 000000000..d17c0465e
Binary files /dev/null and b/analyzers/VirusTotal/assets/virustotal-ids-sandbox-urls.png differ
diff --git a/analyzers/VirusTotal/assets/virustotal-logo.png b/analyzers/VirusTotal/assets/virustotal-logo.png
new file mode 100644
index 000000000..7e6024421
Binary files /dev/null and b/analyzers/VirusTotal/assets/virustotal-logo.png differ
diff --git a/analyzers/VirusTotal/assets/virustotal-scan.png b/analyzers/VirusTotal/assets/virustotal-scan.png
new file mode 100644
index 000000000..7eb3ea153
Binary files /dev/null and b/analyzers/VirusTotal/assets/virustotal-scan.png differ
diff --git a/analyzers/VirusTotal/assets/virustotal-summary-report.png b/analyzers/VirusTotal/assets/virustotal-summary-report.png
new file mode 100644
index 000000000..6cde36f12
Binary files /dev/null and b/analyzers/VirusTotal/assets/virustotal-summary-report.png differ
diff --git a/analyzers/VirusTotal/assets/virustotal-yara.png b/analyzers/VirusTotal/assets/virustotal-yara.png
new file mode 100644
index 000000000..4516ec329
Binary files /dev/null and b/analyzers/VirusTotal/assets/virustotal-yara.png differ