Automated Malware Analysis - Joe Sandbox Cloud Basic

Choose Analysis System

VM Systems

w7x64
w7x64
Windows 7 x64 SP1 with Office 2010 SP1 (IE 11, FF52, Chrome 57, Adobe Reader DC 15, Flash 25.0.0.127, Java 8 Update 121, .NET 4.6.2)
w10x64
5x w10x64
Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 104, IE 11, Adobe Reader DC 19, Java 8 Update 211
w7
3x w7
Windows 7 SP1 (with Office 2010 SP2, IE 11, FF 54, Chrome 60, Acrobat Reader DC 17, Java 8.0.1440.1, Flash 30.0.0.113)
w10
w10
Windows 10 (Java 1.8.0_91, Flash 21.0.0.242, Acrobat Reader DC 2015.016.20039, Internet Explorer 11, Chrome 51, Firefox 47)

HBI (Hypervisor based Inspection) Systems

w7x64native_hvm
w7x64native_hvm
W7x64 Native with HVM (patch level Feb 2018, Office 2016, Java 1.8.0_161, Flash 28, Acrobat Reader DC 18, Internet Explorer 11, Chrome 64, Firefox 58)
w7x64_hvm
w7x64_hvm
Windows 7 x64 HVM (Office 2010, IE11, FF 50.1, Chrome 54.0, Java 1.8.0_111, Adobe Reader DC 2015.02)

VM Office Configs

w7_2
w7_2
Windows 7 (Office 2013 v14, Java 1.8.0_40, Flash 16.0.0.305, Acrobat Reader 11.0.08, Internet Explorer 11, Chrome 41, Firefox 36)
w7_3
w7_3
Windows 7 (Office 2016 v15, Java 1.8.71, Flash 20.0.0.286, Acrobat Reader 11.0.14, Internet Explorer 11, Chrome 48, Firefox 44)
w7_4
w7_4
Windows 7 (Hancom Office 2014 (Korean), Java 1.8.0_40, Flash 16.0.0.305, Acrobat Reader 11.0.08, Internet Explorer 11, Chrome 44, Firefox 36)
w7_5
w7_5
Windows 7 (Ichitaro Office (Japanese), Java 1.8.0_40, Flash 16.0.0.305, Acrobat Reader 11.0.08, Internet Explorer 11, Chrome 44, Firefox 36)

VM Large Scale Configs

w7l
12x w7l
Windows 7 (Java 1.8.0_40, Flash 16.0.0.305, Acrobat Reader 11.0.08, Internet Explorer 11, Chrome 41, Firefox 36)
w7x64l
12x w7x64l
Windows 7 x64 (Java 1.8.0_40, Flash 16.0.0.305, Acrobat Reader 11.0.08, Internet Explorer 11, Chrome 41, Firefox 36)

Native Systems

w10x64native
w10x64native
Windows 10 64 bit 20H2 Native physical Machine for testing VM-aware malware (Office 2019, IE 11, Chrome 93, Firefox 91, Adobe Reader DC 21, Java 8 Update 301
w7native
2x w7native
W7 Native physical Machine for testing VM-aware malware (Office 2010 v14.0.6029, Java 8 Update 111, Flash 17, Acrobat Reader 11.0.10, Internet Explorer 11, Chrome 55, Firefox 50)
w7x64native
w7x64native
W7x64 Native physical Machine for testing VM-aware malware (Office 2010 v14.0.6029, Java 1.8.0_65, Flash 20.0.0.267, Acrobat Reader 11.0.18, Internet Explorer 11, Chrome 55, Firefox 47)
w10native
w10native
W10 Native physical Machine for testing VM-aware malware (Office 2010, Java 1.8.0_91, Flash 22.0.0.192, Acrobat Reader DC 15.016.20039, Internet Explorer 11, Chrome 55, Firefox 50)

w10x64

5x w10x64
Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 104, IE 11, Adobe Reader DC 19, Java 8 Update 211

Choose Analysis Architecture

Define Sample Source and Choose Analysis System

VM Systems

w7x64

5x w10x64

3x w7

w10

HBI (Hypervisor based Inspection) Systems

w7x64native_hvm

w7x64_hvm

VM Office Configs

w7_2

w7_3

w7_4

w7_5

VM Large Scale Configs

12x w7l

12x w7x64l

Native Systems

w10x64native

2x w7native

w7x64native

w10native

5x w10x64

Live Interaction

Settings

Tagging No Tags selected

Available tags:

Network Internet Access HTTPS

Code Analysis HCA HDC VBA Javascript JAVA .NET AMSI

Filtering and Performance Fast Mode Enable secondary Results Check Cache

Intelligence Cmdline Argument Office / PDF PW Archive PW Normal User Change System Date Anti-Evasion Language & Country URL Reputation

Cookbooks Coobook Setup Code

Privacy Encrypt analysis

Collaboration Collaborate with Joe Sandbox View and Joe Sandbox Class Share sample

Div Notifications

Accept Terms and Conditions

macvm-highsierra

mac-highsierra

mac-mojave

mac-bigsur

Live Interaction

Settings

Tagging No Tags selected

Available tags:

Network Internet Access HTTPS

Filtering Enable secondary Results Check Cache

Intelligence Archive Password URL Reputation

Privacy Encrypt analysis

Collaboration Collaborate with Joe Sandbox View and Joe Sandbox Class

Div Notifications

Accept Terms and Conditions

android9

android12

android4_4

android4_4_lib

3x android5_1

android6

android7_nougat

android5native

android9

Settings

Tagging No Tags selected

Available tags:

Network Internet Access HTTPS

Filtering Enable secondary Results Check Cache

Intelligence Archive Password URL/File Intelligence

Privacy Encrypt analysis

Collaboration Collaborate with Joe Sandbox View and Joe Sandbox Class Share sample

Div Notifications

Accept Terms and Conditions

lnxubuntu1

lnxubuntu20

lnxcentos1

Settings

Tagging No Tags selected

Available tags:

Network Internet Access HTTPS

Filtering Enable secondary Results Check Cache

Intelligence Archive Password URL Reputation