Beijing time on November 19, Google's online file scanning tool VirusTotal will provide new services, scanning users to upload the suspicious MAC application in the sandbox, so as to obtain more information, optimization of MAC malware detection and analysis.
Information security providers are generally found, without the user's permission to install the Mac application, in particular, advertising software, is reaching the highest level in history. By VirusTotal, users can upload suspicious files, and use 54 anti-virus tools for scanning. However, the scan results are not perfect, and can not ensure the security of the file 100.
Over the years, the service only for users to upload the file for a static scan, will not execute the file. In the process of the analysis of the malicious software behavior, this means a serious lack of.
When the virus file is stored in the disk, many anti-virus tools are unable to detect the virus, especially in the file has been disguised, or a new threat. However, after the file is executed, the program will show suspicious behavior, then the anti virus tool will be easier to detect the virus.
In practical use, even if the VirusTotal scan does not report the virus, it does not mean that the file can be executed safely. But if VirusTotal returns the results showed that the virus exists, especially the report from the well-known anti-virus tools, then the user can directly determine the presence of virus. Therefore, VirusTotal still has a lot of value.
In order to provide more information to the user, the information security team and researchers, to determine the suspicious file, VirusTotal in 2012 provides the results of the behavior of the Windows executable file. VirusTotal will in a controlled environment, namely the sandbox run the file, and monitor program behavior, such as procedures to create a file, read what documents, and started what processes.
VirusTotal began in 2013 to support the behavior of the Android application scanning. And this Tuesday, this feature to further cover the OS X Mac executable file, that is, DMG file, as well as the Zip file containing the file.
VirusTotal team member Carle
Anti viral service ESET senior fellow David