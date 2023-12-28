(MENAFN- EIN Presswire)

DUBAI, UNITED ARAB EMIRATES, December 28, 2023 /EINPresswire / -- ANY , a cloud-based malware analysis sandbox, today announced the release of new features and updates for December 2023. The most notable addition is Automated Interactivity (AI), which employs machine learning to automate repetitive tasks and enhance malware analysis operations.

New Features

Automated Interactivity (AI)

ANY's new AI capability mimics human actions during malware analysis. It automatically navigates through setup forms, CAPTCHAs, installation windows, and other scenarios requiring human intervention, allowing users to reduce their involvement in the analysis process. The feature is enabled by default for API tasks and can be turned on or off for web-based tasks.

Expanded Suricata rules

ANY's Suricata rules have been expanded, providing users with more granular information when a detection occurs. This includes identifying the affected traffic segment, detailing the relevant fields, and often viewing the rule itself within the interface.

This enhanced transparency allows users to better understand each detection and apply the rules in their own incident investigations.

New YARA Rules

ANY has added new signatures to detect various activities within the task. These rules cover the following malware families:

.W4SP Stealer

.Klippr

.OriginBotnet

.DarkGate

.IcedId

New Suricata rules and updates

In addition to the new YARA rules, ANY has also added multiple new Suricata signatures. Here's a breakdown of the additions:

.Stealers: Detection for AxileStealer, an updated version of Vidar, and AlbumStealer.

.Backdoors: Detection for Gh0stRat's encrypted DLL, which can be hidden within JPEG files.

.Loaders: Updated signature for DarkGate, which altered its activities following ANY's Twitter post on its new techniques. Additionally, signatures for Pikabot and QakBot have been added.

.Proxy: Detection for GoProxy.

.Ransomware: Detection for DirCrypt.

Learn more details in ANY's blog post.

