Yesterday, the interactive malware analysis sandbox service called
Any.Run announced that their free community version is open to the public. This allows anyone to register an account and to interactively analyze a particular file in real time.
Any.Run is based out of Russia and was founded in 2016 by security researcher Alexey Lapshin. His team now consists of five dedicated developers who work on improving the platform.
What makes Any.Run different from other sandbox analysis tools is that it is completely interactive. That means that instead of uploading a file and waiting for a sandbox to spit out a report, with Any.Run you can upload a file and in real-time interact with the sandbox while analyzes your file. This allows you to upload programs that require you to click on buttons or malicious documents that require you to enable content or macros.
For example, let's say you wanted to analyze an adware bundle that requires you to click on various installation prompts before it installs unwanted programs. Using Any.Run you can do this.
Any.Run has also told BleepingComputer that this service is not meant for "for mass checks in which no user intervention is required. Also, it is not suitable for in-depth research of thread and executed processes code.". Instead it is meant for users who want to analyze malware that require's user interaction or to analyze attack vectors, PoC of new exploits, and multi-component exploit bundles.
...
...
...
...
