What is the purpose of your service/product?

The primary focus of OPSWAT Filescan Sandbox and its standalone edition is not only to detect malicious files, but also to extract potential "Indicators of Compromise" (IOCs) from compressed, obfuscated, and encrypted data in short time and without runtime analysis. This process is performed using proprietary emulation engines, at scale and with rapid speed compared to traditional dynamic analysis.

For example, an E-Mail (msg/eml) with a maldoc attachment (typically containing a heavily obfuscated VBA macro) is fully analyzed within 10-20 seconds including all relevant indicators. This includes all download URLs, underlying files, as well as a recursive analysis of any extracted artifact.

In addition, all files are scanned for hundreds of malicious threats and tactics which – when possible – are mapped to the MITRE ATT&CK framework for quicker assessment.

Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard
Next to read:
What file types are supported?

See the "Technical Datasheet" for a complete list of features: https://docs.opswat.com/filescan/datasheet/technical-datasheet

On This Page
What is the purpose of your service/product?