Malware Analysis Appliance

A new breed of hackers – including cybercriminals, nation states, hacktivists, and insiders – are perpetrating increasingly sophisticated, targeted and effective exploits on enterprises. This shift in the threat landscape requires a new defense that combines prevention with more effective attack detection, preparedness, and response.

The Blue Coat Malware Analysis Appliance is part of the Security and Policy Enforcement Center and bridges the gap between blocking known malware, and detecting and analyzing unknown and advanced malware. Integrated with the Blue Coat Content Analysis System and the Security Analytics Platform, the appliance simulates your systems to detect evasive malware and uses custom virtual environments for faster anomaly detection. Without ever putting actual systems or applications at risk, the Malware Analysis appliance provides a map of the damage a threat would cause if allowed to run in your network, so you can contain zero-day threats and unknown malware.

The net result: your business can move beyond fear and start focusing on possibilities.
 

 

Advanced Threat Protection Solution: A Lifecycle Defense

The Malware Analysis Appliance is a key component of the Blue Coat Advanced Threat Protection solution. The solution integrates products from the Security and Policy Enforcement Center and the Resolution Center to deliver a comprehensive lifecycle defense that fortifies the network by blocking known threats, proactively detecting unknown and already-present malware, and automating post-intrusion incident containment.

 
  • Superior Analysis and Accuracy

    Automatic sample classification and risk scoring by highest matched pattern, along with support for existing malware analysis workflows, allow you to flag detected system events based on potential malicious activity.

  • Ease of Use and Alerting

    Real-time incident reporting with detailed analysis of the event provides immediate notification to security analysts while a best-in-class, web-based user interface enables interaction with malware and the ability to click through installers. The web-based dashboard enables easy searches of the malware intelligence and collection database, store samples, reports, and events.

  • Scalable Architecture and Performance

    Process 55,000 samples per day with parallel sample processing on up to 55 virtual machines per single Malware Analysis appliance. Multiple VMs with Windows XP and Windows 7 OS’s and unlimited software configurations can be supported.

  • Threat Intelligence Network Effect

    Post-detection and analysis, intelligence on new threats is shared with the Blue Coat ProxySG appliance to move protection to the gateway and with the Security Analytics Platform for eradication of the full scope of the attack.

Advanced Threat Protection Solution: A Lifecycle Defense.The Malware Analysis Appliance is a key component of the Blue Coat Advanced Threat Protection solution. The solution integrates products from the Security and Policy Enforcement Center and the Resolution Center to deliver a comprehensive lifecycle defense that fortifies the network by blocking known threats, proactively detecting unknown and already-present malware, and automating post-intrusion incident containment.

 

Resources