CWSandbox: First Results
Sunday, April 30. 2006
Some time ago I blogged about the diploma thesis on "Automatic Behaviour Analysis of Malware" by Carsten Willems that I supervise. Preliminary results are now available and we will start a beta test soon. Below you find the (rather detailed) results of an analysis of a malicious binary with the md5sum 7f60162c2c0bd2cc7531e51328e98290. Compared to the output by the Norman Sandbox which is available at http://sandbox.norman.no/live_2.html?logfile=816205, the CWSandbox has much more detailed results. If you want more information, don't hesitate to contact Carsten or me.
analysis of c:\analyse\log\7f60162c2c0bd2cc7531e51328e98290.exe\run_1\
proc_1
PID=720
Username=Administrator
Filename=c:\analyse\binary\7f60162c2c0bd2cc7531e51328e98290.exe
MD5=7f60162c2c0bd2cc7531e51328e98290
Continue reading "CWSandbox: First Results"
".
