The Sandbox Analysis Report package provides detection results for known and new advanced threats. It includes static and multiple dynamic analyses of uploaded files in an array of sandboxes. In addition, files that were uploaded and were sent for sandbox analysis will result with a sandbox report and additional artifacts such as PCap file, dropped files and screenshots produced during the file analysis.

The process consists of three phases:

  1. Hash lookup
  2. File upload
  3. Check hash

For API usage example, see the following:

  • No labels