Malware Analysis

Anyone here, @mike.mitchell or anyone else, automate initial malware triage? Some sort of sandboxed environment?

@MisterShak - I use Python to automatically submit new indicators to my Cuckoo (On-prem Sandbox) & Falcon Sandbox (Cloud Public API)

1 Like

Which one do you think is easier, as far as API’s?

I like the Falcon SandBox API since it allow you to conduct static analysis of Android APK files in addition to Windows XP, Vista, Windows 7/8 & 10 environments.