Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Frequently Asked Questions (FAQs) about Virtual Analyzer in Deep Discovery Inspector (DDI)

    • Updated:
    • 31 Mar 2015
    • Product/Version:
    • Deep Discovery Inspector 3.2
    • Deep Discovery Inspector 3.5
    • Deep Discovery Inspector 3.6
    • Deep Discovery Inspector 3.7
    • Deep Discovery Inspector 3.8
    • Platform:
    • N/A N/A
Summary

This article discusses the common questions asked about DDI’s Virtual Analyzer.

Details
Public

Listed are the questions encountered about DDI virtual analyzer:

Does DDI have static analysis features for unknown malwares such as PE configuration analysis, linker analysis, packer analysis, and operation analysis?

No. DDI has no detection module that can do this kind of analysis. However, you can see some static analysis for documents (PDF, SWF, Office files) for possible exploits in File Analysis Results.

Can DDI analyze malwares that pervert Windows auto-run feature?

Yes, Virtual Analyzer can log the auto-run modification behaviors of the sample in the File Analysis Results.

Does DDI have exclusive analysis feature for .NET malwares?

Yes, as long as .net framework is installed in sandbox.

Can DDI log FQDNs/URLs that are referred by malwares in reports?

Yes, sample FQDNs/URLs and visited FQDNs/URLs can be logged.

Can DDI log information where malwares tried to connect even if that destination doesn't exist in reports?

No. DDI only logs detection of real monitored traffic.

Premium
Internal
Rating:
Category:
SPEC
Solution Id:
1102733
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.