June 30, 2025
Doctor Web is updating its interactive file analysis sandbox Dr.Web vxCube. The changes will apply to both the cloud-based and on-premise versions.
Key innovations:
Windows 11 available as a VM operating system for analysis
Scanning TLS traffic generated by samples being examined
Visual representation of PCAP file contents
Thanks to its MITM (man-in-the-middle) analysis feature, Dr.Web vxCube won't just determine the address a test sample is attempting to communicate with; it will also show what kind of data is being transmitted (only available under Windows if the corresponding option is enabled).
The “Network Activity” section now contains a visual representation of PCAP file contents to make analysis results even more detailed and easy to discern. The update also introduces improvements to the sandbox’s UI.
The cloud-based version of Dr.Web vxCube will be unavailable on July 2 between 9.00-10.00 a.m. GMT during scheduled updating.
Dr.Web vxCube is a suspicious file analysis sandbox. It can help you identify indicators of compromise, prevent cyberattacks and eliminate advanced persistent threats. The sandbox is available as a cloud-based service and an on-premise solution.
Dr.Web vxCube can examine:
Java, Windows, Linux, and Android executables
Scripts
Microsoft Office/OpenOffice documents and other files as well as PDF files
Docker containers
Use this form to receive demo access to the cloud-based version of Dr.Web vxCube..