Hybrid Analysis continues to add new features and capabilities, making our free malware analysis service more compelling than ever. As part of this growth, we are pleased to announce integration of the Criminal IP search engine as part of our Quick Scan analysis.
Criminal IP’s search engine is OSINT-based (open source Intelligence) and delivers extensive cyber threat intelligence data for URLs and domains, which can be a valuable tool for threat hunting and attack surface analysis. This includes the DGA (Domain Generation Algorithm) score for the scanned URL, phishing detection, suspicious cookies/apps/HTML on the website, SSL validation and more.
In Hybrid Analysis, simply enter an IP address or website, select Quick Scan, and then you’ll view the Criminal IP Scorecard on the Overview page, which represents the threat assessment level of the scanned domain/IP. Hybrid Analysis users can leverage this new Criminal IP integration to quickly and proactively identify potential threats, helping them make informed decisions about the state of an IP or URL.
Criminal IP Integration: Head For the Analysis Overview Section
Criminal IP is now included among the integrated technology partnerships in the Analysis Overview section, which is part of the Quick Scan analysis feature in Hybrid Analysis. You’ll find the new service as a Scorecard presenting a color-coded rating for the scanned entity. The Scorecard includes a More Details button that provides additional context and detail about the analysis of the scanned domain/IP. You can also click a button on the Scorecard that will take you directly to Criminal IP’s website for additional details of your scan based on the service’s extensive threat intelligence data.
Figure 2: Clicking More Details on the Criminal IP Scorecard from the previous screenshot brings up the URL Scan Report Summary, showing details
Happy Hunting!
This new partnership with Criminal IP further enhances the ability of Hybrid Analysis users to identify and assess potential threats and cyber risks. Stay tuned for ongoing updates on the ways that we are continuing to make our platform even stronger – including collaboration and partnership with organizations like Criminal IP – providing the Hybrid Analysis community with the most extensive suite of threat research tools available.