Sandbox Malware Analyzer

Home

Products

Technology

Case studies and News

About Norman

Buy or Try

Microsites » SandBox Malware Analyzer » Products » Norman SandBox Reporter - product information

Norman SandBox Reporter - product information

Add to My Norman Bookmarks

Norman Sandbox Reporter

Product description

Overview

Norman SandBox Information Center (link opens in separate browser window) and other sources by Norman daily receive thousands of suspicious files of all types. All of these files are being analyzed through the proactive Norman SandBox technology.

How does it work?

Files submitted to Norman SandBox Information Center are being analyzed, and as a result you get a list of malicious sites and URLs. The Norman SandBox Reporter is created daily, and every night (CET) subscribers receive a list with information of Norman SandBox analysis over the past 24 hours. The list is provided in both .txt and .xml format for easier management.

Norman SandBox Reporter in more detail

Some of the most common actions performed by malware today are the creation of robots, botnets and malware connecting to servers on the Internet.
A botnet consists of thousands of sleeping robots installed in computers around the world. These robots are installed without the user’s knowledge and can be remotely controlled by computer criminals in order to perform various illegal activities, such as Distributed Denial of Service attacks (DDoS), phishing attempts, spamming, keylogging etc.

The malware connects to servers on the Internet to either download more malicious files or to upload information taken from the computer where it is installed. This can be everything from documents to user names, passwords and credit card information.

The result from the analysis

The outcome of this analysis includes:

A list of URLs that might contain malicious code. This list can be used in many ways, such as importing it to a URL blocklist filter to prevent any computer behind the filter to access these sites. ISPs can use the list to take down websites containing malicious code.
A list of IRC network servers that malware tries to connect to. The list includes server names, ports, username and password etc. These IRC networks are most likely botnets.
A SandBox summary of most of the files that have been analyzed in the same period. The summary contains more detailed information about the files behavior and intents.
The list is provided in both .txt and .xml format for easier management.

System requirements

In order to be able to receive the report (the URL list) you need a valid email address.

More information - testing or purchasing the product

Click here and fill in the form to purchase or test the product. or to request more information.

TECHNICAL INFORMATION - SANDBOX REPORTER

>> Product sheet (PDF)

>> Frequently Asked Questions

SUPPORT

>> Support form Norman SandBox Malware Analyzer products

OTHER SANDBOX PRODUCTS

>> Norman SandBox Analyzer

>> Norman SandBox Online Analyzer

>> Norman SandBox Analyzer Pro

Norman is one of the world’s leading companies within the field of data security. With products for antivirus (virus control), personal firewall, antispam, and encryption, the company plays an important role in the data industry.