Guide to Online Antivirus Solutions Part 4: Norman SandBox Malware Analyzer
by James Hicks - Thursday, 16 August 2007.
Internet connections are getting faster every day, so online antivirus solutions transformed from proof of concepts into actual quality security services. Lately I have been playing with some leading online antivirus products and here are my thoughts.

After Panda Security NanoScan and TotalScan, Trend Micro's HouseCall and Kaspersky Online Scanner, this time we have something a bit different.

Norman SandBox Technology ( is a virtual environment where programs may perform in safe surroundings without interfering with the real processes, program files and network environment. If a program performs actions that the SandBox regards as suspicious, using a set of parameters, the program is "tagged" as a malicious program. This technology is used in Norman antivirus products, but they also offer a free Sandbox online service.

The process is pretty simple: upload a suspicious file, enter your e-mail address and you will receive the results over e-mail.

Better yet, you can check the online details on the last submitted files to Sandbox. There you will both inspect your file, as well as those submitted by other users.

Unfortunately, as you can see from the screenshot, this free online version doesn't let you check the details including the network services the specific malware connects to. Nevertheless, Norman Sandbox provides some fast detection capabilities for your suspicious files.


WordPress sites compromised to redirect to Pirate Bay clone, exploit kit

Malwarebytes researchers have spotted another malware delivery campaign that uses compromised WordPress sites to redirect users to a page hosting an exploit kit.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Thu, Apr 2nd