Unparalleled performance

VMRay Analyzer provides full insight into malware activity. Easy to install and use without special expertise. Get comprehensive results the way you want them.

Discover More

Featured Video

How It Works

See how our agentless hypervisor-based monitoring approach analyzes and detects threats that other approaches can’t.

More videos


Word macro uses WMI to detect VM environments

We recently came across an interesting malicious Word document that used an embedded Word macro to detect whether or not it was being opened inside a VM. If no VM was detected, the macro proceeded to attempt to download a payload (executable) to infect the machine. Let’s take a look at our analysis and how VMRay’s Function […]

Read More “Word macro uses WMI to detect VM environments”

Custom Threat Scoring with VTI

A deep dive into automated, customizable threat scoring In this second blog post about what’s new in V 1.10 we drill down into our VMRay Threat Identifier (VTI) engine and its threat scoring. It automatically identifies and flags malicious behavior using VTI rules, generating an overall severity score of malicious behavior. The VTI engine has […]

Read More “Custom Threat Scoring with VTI”

Powershell Ransomware – a PowerWare Deep Dive

Malware authors are always looking for an edge to evade detection and extend the useful life of their creations. In the constant cat-and-mouse game between malware authors and security vendors, malware authors must constantly revise and reinvent their product. They will consider anything they can do to avoid detection. Along these lines, Microsoft PowerShell has […]

Read More “Powershell Ransomware – a PowerWare Deep Dive”

See all posts