DroidBox: beta release

Published by Patrik Lantz at September 2, 2011

Tags

android
droidbox
dynamic analysis
sandbox

Beta version is out and the install instructions are available at the project webpage. The new features are:

- Prevent some emulator evasion techniques

- Added visualization of analysis results

- Automated app installation and execution

- Displaying analysis information about the APK

- Static pre-check extracts the app’s registered Intents

The following figures show the new visualization added to the beta version.

Image to the left is a PoC for classifying malwares and their similarity. The second image should assist in the analysis to learn in which order operations are performed. The timestamp is relative to the analysis starting time and operation details can then be located in the analysis output.

Patrik Lantz

Related posts

GSoC 2022 Project summary: Creating Playbooks for IntelOwl

GSoC 2022 Project Summary: IntelOwl v4 Improvements

GSoC 2022 Project Summary: IntelOwl Go Client (go-intelowl)