essob Posted July 31, 2010 Share Posted July 31, 2010 För mig en del nyheter. It is one big mistake to test and analyze malwares in virtual environment because they obviously didnt know about anti-virtual machine, anti sandboxes and anti debug feature. Some good crypters that can make a malicious file undetectable by any antivirus has the capability to exit the process when it is being analyzed. http://www.raymond.cc/blog/archives/2010/05/12/why-i-test-and-analyze-software-from-real-windows-environment/ Hjälpmedel verkar finnas. The good thing about using Buster Sandbox Analyzer is it includes countermeasures against malwares detecting Sandboxies presence. So even if the malware contains anti-sandboxie code, you can still get to analyze the malware in Sandbox. http://www.raymond.cc/blog/archives/2010/07/30/buster-sandbox-analyzer-makes-sandboxie-stronger/ Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.