Sandbox page
On the Sandbox page of Kaspersky Research Sandbox, you can upload a malicious or probably infected file or specify web addresses to execute them in the safe environment of Kaspersky Research Sandbox.
You can select the required execution environment (operating system) and other execution parameters, if necessary.
After the object is executed and analyzed by Kaspersky, results are displayed in the History table. If necessary, you can use keywords, sorting and filters to search for the certain object results. You can open other users' execution results using a direct link.
For executed objects, you can perform the following:
- Click the item in the table to view general information about the executed object. If necessary, click the Browse button by the YARA file or Suricata file fields to select the related rules file (for the file execution only).
- View details—Opens the execution results page for the selected object.
—Opens the drop-down menu, where you can select the file format that you want to export investigation results to: STIX, JSON archive, CSV archive, PDF, and PCAP. You can also select the Download debug report item to download an archive that contains a debug report. This item is available only if you selected the Create debug report check box when creating an execution task.If the object analysis is in progress, the View details link and
button are not displayed.
—Repeats execution of the selected object. You can change execution parameters for the selected object.
—Deletes object execution results.
If a Kaspersky Research Sandbox administrator deleted task execution results from the server's hard drive during the Kaspersky Research Sandbox technical maintenance, information about these tasks is still displayed in the History table, but you cannot view or export execution results for this task. Also you cannot repeat the object execution by clicking the (rescan) button. Corresponding buttons are not available. To repeat the execution, you have to upload a file or specify web addresses again.
Sandbox page
Page top