VirusTotal and the Cuckoo Sandbox Paper
VirusTotal aggregates many antivirus products in online scan engines to check for viruses that the user`s own antivirus may have missed,or to verify against any false positive . Antivirus software vendors can review copies of file that were flagged by other scans but passed by their own engine, to help improve their software and , by extension,VirusTotal`s own capability.
Cuckoo Sandbox is an open-source software for automating analysis of suspicious files. To do so is makes use of custom components that monitor the behavior of the malicious processes while running in an isolated environment.
Cuckoo sandbox is a tool to underestand the behaviour of a suspicious file when executed, it is available for initial automated triage in incident response.you can submit potentially malicious files and documents,file hashes,or URLs for analysis before putting a person on the job.cuckoo can be configured to use any malware research rulest and output data to threat information sharing platforms like MISP. VirusTotal and the Cuckoo Sandbox Paper.