|
Release Notes for Dr.Web vxCube 1.3.0 |
|
Last updated on 3/15/2019 Resolved Issues and Enhancements About Product Dr.Web vxCube is a web service that analyzes potentially malicious files, generates detailed reports on their behavior in the selected environment and prepares a utility for neutralizing detected threats. Dr.Web vxCube uses hardware virtualization for carrying the analysis. It allows Dr.Web vxCube to work fast and be invisible to the file you analyze. You can upload a file in a supported format to the analyzer, configure environment on a virtual machine, and influence the analysis. After the analysis, you will receive a full technical report, as well as a video report showing file’s behavior in the specified conditions. What is special about Dr.Web vxCube? •Virtual machines have an Internet access via private proxy server. This helps to analyze the file behavior to its fullest, especially if its functioning depends on downloading data from the Internet. •The new analyzer’s mechanism works at the hypervisor’s level and does not use any additional software on the host operating system, for example, drivers that hook functions. Thus, during analysis, the sample cannot detect hooks or unhook. •Logging is performed at the hypervisor level, thus the analyzer is impossible to detect. •It is possible to connect to an analyzed environment via VNC (Virtual Network Computing) client and influence the analysis process. How it works 1.You upload a file you want to check and specify additional settings. 2.Dr.Web vxCube analyses the file and generates a detailed report once the analysis is finished. 3.After that, you can examine the report and download a utility that will help you neutralize detected threats. New Features and Capabilities •Introduced a new API version. API 2.0 significantly enhances the capabilities of interaction with the service. Resolved Issues and Enhancements •Speeded up the file analysis. •Improved protection from detecting the virtual environment by the analyzed samples: resolved detections by Pafish, RDTSC, and VMProtect, as well as fixed the hypervisor vulnerabilities. •Fixed file analysis errors. •Improved the details of displaying the analysis results. System Requirements For the correct operation of Dr.Web vxCube, the following requirements must be met:
In Windows XP, you are recommended to use Google Chrome. In Windows XP, video playback is not guaranteed in Mozilla Firefox. Additional Information Technical Support If you encounter any issues using Dr.Web vxCube, you can contact the Doctor Web technical support in the following ways: •Fill in the web form: https://support.drweb.com/support_wizard/vxcube/. •Call by phone in Moscow: +7 (495) 789-45-86. Free phone call (within Russia): 8-800-333-7932. Refer to the official website at https://company.drweb.com/contacts/offices/ for regional and international office information of Doctor Web company. Legal Notes © Doctor Web, 2019. Все права защищены Материалы, приведенные в данном документе, являются собственностью «Доктор Веб» и могут быть использованы исключительно для личных целей приобретателя продукта. Никакая часть данного документа не может быть скопирована, размещена на сетевом ресурсе или передана по каналам связи и в средствах массовой информации или использована любым другим образом кроме использования для личных целей без ссылки на источник. Товарные знаки Dr.Web, SpIDer Mail, SpIDer Guard, CureIt!, CureNet!, AV-Desk, KATANA и логотип Dr.WEB являются зарегистрированными товарными знаками «Доктор Веб» в России и/или других странах. Иные зарегистрированные товарные знаки, логотипы и наименования компаний, упомянутые в данном документе, являются собственностью их владельцев. Ограничение ответственности Ни при каких обстоятельствах «Доктор Веб» и его поставщики не несут ответственности за ошибки и/или упущения, допущенные в данном документе, и понесенные в связи с ними убытки приобретателя продукта (прямые или косвенные, включая упущенную выгоду). |