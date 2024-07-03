DUBAI, DUBAI, UNITED ARAB EMIRATES, July 3, 2024 /EINPresswire.com/ -- ANY.RUN, a trusted provider of an interactive malware sandbox and threat intelligence portal, has introduced updates and features for June. These include improved threat detection capabilities and free access to Windows 10 virtual machines for all users.

𝐖𝐢𝐧𝐝𝐨𝐰𝐬 𝟏𝟎 𝐱𝟔𝟒 𝐈𝐬 𝐍𝐨𝐰 𝐀𝐯𝐚𝐢𝐥𝐚𝐛𝐥𝐞 𝐭𝐨 𝐀𝐥𝐥 𝐀𝐍𝐘.𝐑𝐔𝐍 𝐔𝐬𝐞𝐫𝐬

ANY.RUN now allows all users to access a Windows 10 x64 virtual machine for malware analysis. Previously, free plan users were limited to a basic Windows 7 32-bit VM.

By offering Windows 10 64-bit to everyone, the company aims to improve threat detection and enable users to analyze newer threats that target modern systems.

𝐌𝐮𝐭𝐞𝐱 𝐒𝐞𝐚𝐫𝐜𝐡 𝐂𝐚𝐩𝐚𝐛𝐢𝐥𝐢𝐭𝐢𝐞𝐬

ANY.RNU has released an update to Threat Intelligence Lookup. Users now can search the service’s database for malware samples that contain mutexes.

The search results also make it easy to distinguish between malicious and legitimate mutexes, significantly speeding up threat investigations.

𝐘𝐀𝐑𝐀 𝐑𝐮𝐥𝐞𝐬 𝐚𝐧𝐝 𝐂𝐨𝐧𝐟𝐢𝐠 𝐄𝐱𝐭𝐫𝐚𝐜𝐭𝐨𝐫𝐬

ANY.RUN has added many YARA rules and malware configuration extractors, as well as updated existing ones, further enhancing its threat identification capabilities.

Some of the highlights include: Rhadamanthys, VectorStealer, DarkTortilla, WarmCookie, BadJoke, SapphireWerewolf, MoonstoneSleet, GhostLocker, MassLogger, UmbralStealer, and Danabot.

𝐏𝐚𝐜𝐤𝐞𝐫 𝐃𝐞𝐭𝐞𝐜𝐭𝐢𝐨𝐧

ANY.RUN has implemented detection for various packers that are commonly used in malware to evade antivirus software. The service now can detect UPX, KoiVM, NETreactor, Aspack, VMProtect, Themida, NsPack, Pepack, TSULoader, Neolite, and Mpress.

𝐄𝐱𝐩𝐚𝐧𝐝𝐞𝐝 𝐒𝐮𝐫𝐢𝐜𝐚𝐭𝐚 𝐑𝐮𝐥𝐞𝐬𝐞𝐭 𝐚𝐧𝐝 𝐒𝐢𝐠𝐧𝐚𝐭𝐮𝐫𝐞𝐬

ANY.RUN has significantly expanded its Suricata ruleset, adding 127 new rules. These include 101 rules for various phishing detection, additional auxiliary rules, Creal Stealer detection, detection for abuse of Telegram/Steam websites as dead drop resolvers (DDR), and NjRat variant (2.3R tXRAT) detection.

The company has also added 11 new signatures. Some of the highlights include multiple phishing detection signatures, Shinra signatures, and GuLoader signatures (one and two).

See details about all updates in June on ANY.RUN’s blog.

𝐀𝐛𝐨𝐮𝐭 𝐀𝐍𝐘.𝐑𝐔𝐍

ANY.RUN offers cybersecurity solutions that help organizations stay ahead of advanced cyber threats. Its sandbox enables malware analysts to quickly and accurately analyze malicious files and links, providing a complete understanding of emerging services. ANY.RUN's threat intelligence offerings, such as TI Lookup, Yara Search, and TI Feeds, deliver up-to-date information on active malware across the globe, empowering users to stay informed and protected.