Page 1 of 4 1234 LastLast
Results 1 to 15 of 60

Thread: Buster Sandbox Analyzer

  1. #1

    Buster Sandbox Analyzer

    Official site is:

    And the tool can be downloaded from:

    Buster Sandbox Analyzer is a tool that has been designed to analyze the behaviour of processes and the changes made to system and then evaluate if they are malware suspicious.

  2. #2
    Released Buster Sandbox Analyzer 1.33.


    + Added a feature to run BSA from command line in automatic mode
    + Added Exeinfo support
    + Added extra information of dropped files
    + Updated BSA.DAT
    + Updated LOG_API
    + Fixed a bug

  3. #3
    Hey VirusBuster,

    Thanks for the contribution, I updated the page dedicated to this on the CRCETL

    Please consider donating to help staying online (here is why).
    Any amount greatly appreciated. Thank you.

  4. #4
    Thanks for the information update, silkut!

  5. #5
    Released Buster Sandbox Analyzer 1.34.


    + Added a feature to copy/move processed files in automatic mode
    + Added a feature to export RegHive to .REG format
    + Updated LOG_API
    + Removed HideDriver
    + Fixed a bug

  6. #6
    Released Buster Sandbox Analyzer version 1.35.


    + Added HideDriver again
    + Added LOG_API version for 64 bit systems
    + Fixed several bugs

  7. #7
    Released Buster Sandbox Analyzer 1.36.


    + Added support for ssdeep
    + Improved the support for DLL files
    + Report informations can be selected individually
    + Updated BSA.DAT
    + Fixed several bugs

  8. #8
    Released Buster Sandbox Analyzer 1.37.


    * Improved hiding feature
    * Updated BSA.DAT
    * Removed evaluation risk feature
    * Fixed several bugs

    Part of the improved hiding feature is the possibility of naming LOG_API.DLL with the file name you prefer.

    Evaluation risk was removed from malware analysis report because it was too misleading. Probably I will reintroduce the feature in the near but having other format.

  9. #9
    I forgot to comment a new feature in version 1.37.

    * Added "Version Information" feature. This feature will include a header in reports with the version and date of creation of reports.

  10. #10
    Article updated on the CRCETL.
    Please consider donating to help staying online (here is why).
    Any amount greatly appreciated. Thank you.

  11. #11
    Released Buster Sandbox Analyzer 1.38.


    + Added risk evaluation module
    + Added several improvements
    + Fixed several bugs

  12. #12
    Released Buster Sandbox Analyzer 1.39.


    + Fixed several bugs.

  13. #13
    Released Buster Sandbox Analyzer 1.40.


    + Usability improvement in File Hash, File Scanner, File Signature and automatic analysis features: last used folder will be remembered
    + Usability improvement in File Hash, File Scanner and File Signature features: added drag and drop support
    + Added Exeinfo support to File Signature feature
    + Improved File Hash feature: all hashes can be checked at VirusTotal at once, VirusTotal reports can be saved to disk

  14. #14
    Released Buster Sandbox Analyzer 1.42.


    + Added a feature to capture screen in video (VLC installation required)
    + Added a feature to report direct disk writing attempts (Sandboxie 3.59.01 or newer version required)
    + Fixed a bug

  15. #15
    Released Buster Sandbox Analyzer 1.44.


    +Changed the feature to do not show UDP packets. Now the feature will ignore UDP packets from PCAP captures and reports
    + Added a feature to minimize BSA when the feature to do video capture is enabled
    + Added a feature to compress to ZIP sandbox folder contents when “Keep Sandbox Files” is enabled
    + Added information related to date of submission in VirusTotal reports
    + Added several improvements
    + Updated LOG_API

Similar Threads

  1. Yarr Buster Challenge 1
    By YarrBuster in forum Advanced Reversing and Programming
    Replies: 8
    Last Post: October 21st, 2011, 22:12
  2. Buster Sandbox Analyzer
    By VirusBuster in forum Malware Analysis and Unpacking Forum
    Replies: 1
    Last Post: December 6th, 2009, 20:55
  3. Performance Analyzer ?
    By corpusfugit in forum OllyDbg Support Forums
    Replies: 3
    Last Post: November 28th, 2008, 03:20


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts