We are proud to announce the availability of Network Simulation for file and URL detonations on Hybrid-Analysis.com!
Network Simulation will block internet-bound traffic from reaching its destination, instead routing all traffic to an internal endpoint which responds to those outbound requests (DNS/HTTP(s)/etc...). This allows the submitter to collect crucial indicators and detonation details without ever directly contacting attacker-controlled infrastructure.
To utilize this new feature, submit a new file or URL for analysis and expand "Runtime Options" found within the environment selector section:
Then select "Simulate Network Traffic" when customizing your detonation parameters:
That's it! When your sample is submitted, all traffic destined for the internet will be safely routed internally to feign internet availability.
Happy Hunting!