Fight advanced threats with precision and speed. New VMRay Platform 4.0 for malware analysis and detection, as well as protection against phishing through link detonation.
VMRay, German security specialist for automated analysis and detection of malware, offers with version 4.0 of its VMRay platform extensive new security features, especially for protection against malicious links. The heart of VMRay is a sandboxing technology developed in Germany that is unique on the market. This acts invisibly for evasive malware and thus leverages evasive and concealment tactics by attackers.
Hypervisor-based monitoring approach
Many sandboxes are based on emulation or hooking and therefore either require a lot of hardware resources or are easy to detect for the malware. The VMRay Platform overcomes these limitations with its unique, hypervisor-based monitoring approach: With Virtual Machine Introspection (VMI), VMRay completely monitors the activity of target machines from outside the analysis environment. Even highly evasive malware goes unnoticed that it is running in a sandbox and reveals all the details of its malicious behavior. This hypervisor-based dynamic analysis, which has proven itself over many years, combined with static and reputation engines, enables security teams to identify threats quickly and with high precision.
The VMRay Platform comprises the three products Analyzer for the detailed analysis and forensic investigation of advanced threats, Detector for fully automatic, scalable advanced threat detection and integration into the security structure of companies, and Email Threat Defender for the detection of malware in e-mails.
The features of version 4.0
VMray: If an attacker provides the password for a protected document during a phishing attempt, the password is automatically extracted from the email and the document is opened for investigation.
• Protection against phishing through link detonation already at the time of delivery, instead of at the time of the click: VMRay version 4.0 now offers automatic link detonation in all three products Analyzer, Detector and Email Threat Defender (ETD). URLs contained in files, emails and email attachments are analyzed dynamically without user intervention. This new feature complements the existing automated scanning of email attachments.
• Inbox protection for Office 365: VMRay Email Threat Defender 4.0 now offers seamless integration with Office 365. If a link in an email is detected as malicious, it is marked and automatically moved to a quarantine folder. Links contained in the attached documents are also analyzed. If an attacker provides the password for a protected document during a phishing attempt, the password is automatically extracted from the e-mail and the document is opened for investigation.
• Smart caching to improve the analysis workflow: With this new function, customers can activate a caching mode. If a file that has already been analyzed at an earlier point in time is submitted again, heuristics can be used to determine whether a new analysis is necessary.
• Improved extraction and display of Indicators of Compromise (IoCs): The indications of malicious activities are now clearly displayed in one view for each malware sample.
In addition, the new platform version 4.0 offers further optimization of the management functions and user friendliness.
Forcing the malware to expose itself
Ilijana Vavan, Chief Sales Officer at VMRay: “Incident Response Teams and SOCs are overloaded everywhere by the flood of malware and the mass of false positives. Our technology forces malware to expose itself. It makes reliable verdicts and offers an in-depth analysis of how malware works. In this way, it has saved many IT security teams in the largest organizations in the world time and trouble every day for years. "
More on this at VMray.com
About VMRay
VMRay is focused on a single mission: to help businesses protect themselves from the growing global malware threat. The company's automated malware analysis and detection solutions enable companies around the world to minimize business risk, secure their valuable data, and protect their brands. The founders of VMRay, Dr. Carsten Willems and Dr. Ralf Hund, pioneered malware sandboxing early on and developed groundbreaking technologies that are still industry-leading. They founded VMRay to convert their research results into practical solutions and thus to ensure more security in the online world.