- Mar 15, 2011
Buster said:After a few tests with Sandboxie version 4 and due the major changes to underlying architecture I have considered Sandboxie is not suitable for malware analysis anymore, therefore Buster Sandbox Analyzer development will be discontinued.
I pretend releasing a last BSA version including a fix to support new VirusTotal information and hopefully MAEC report format.
I want to thank Ronen for all the support he has bringed all these years.
Buster said:Ronen: I know Sandboxie 3.x line will be discontinued but I would like to request a last release in consideration for BSA users including next fixes:
+ Bug related to the malware I reported which disables logoff
+ WMI not working on Windows 8
+ API information being truncated
It would be nice if additionally you hook NtQueryInformationProcess (ProcessImageFileName) as you do with NtQueryObject in order to return faked path instead real one.
I would make of this Sandboxie 3.76 bugfixed version the official release to be used with BSA on last release.
Also as I mentioned by mail, if you consider updating 3.x from time to time I would reconsider my decission of stopping BSA development.