Page 1 of 1
Buster Sandbox Analyzer [system analysis utility]
Posted: Wed Aug 10, 2011 7:34 pm
by I am Baas
Buster Sandbox Analyzer is a tool that has been designed to analyze the behaviour of processes and the changes made to system and then evaluate if they are malware suspicious.
http://bsa.isoftware.nl/
Download @
http://bsa.isoftware.nl/bsa.rar
Re: Buster Sandbox Analyzer V1.39
Posted: Sun Mar 25, 2012 10:05 pm
by I am Baas
V1.52 is up (25 March 2012):
Added support for HTML reports
Added a feature to remove sandbox folder contents automatically in manual mode
Included new malware behaviour
Updated LOG_API
Fixed several bugs
Complete changelog @
http://bsa.isoftware.nl/frame8.htm
Info about the
Network Packet Sniffer and requirements.
Dl @
http://bsa.isoftware.nl/bsa.rar
Re: Buster Sandbox Analyzer [system analysis utility]
Posted: Sat Feb 24, 2024 5:10 pm
by Midas
Old topic update:
Buster Sandbox Analyzer v1.92 released, dated 2021-08-22[
?] (available changelog up tp v1.88 at
http://bsa.isoftware.nl/frame8.htm).
As noted by
Baas above, download from
http://bsa.isoftware.nl/bsa.rar (current '
bsa.rar' MD5 hash:
3917fcb14b2b0edfab2c47dacb7fb5ca).
For more info, see also
https://www.wilderssecurity.com/threads/428538/ ...
Re: Buster Sandbox Analyzer [system analysis utility]
Posted: Mon Feb 26, 2024 9:41 am
by Midas
Firefox refused to directly download
BSA, throwing a "
Potential Security Risk" warning.
After proceeding with the download and extracting it, '
BSA.EXE' won't run unless you have
WinPCAP installed (or you copy '
Packet.dll' and '
wpcap.dll' from the '
PCAP' sub-folder to program folder); lastly,
BSA will immediately exit if it can't find
Sandboxie...
So here's the main
BSA executable
SigCheck info:
Code: Select all
BSA.EXE:
Verified: Unsigned
Link date: 22:22 1992-06-19
Publisher: n/a
Company: n/a
Description: Buster Sandbox Analyzer
Product: Buster Sandbox Analyzer
Prod version: 1.92.0.0
File version: 1.92.0.0
MachineType: 32-bit
MD5: 922F55659A9CF0424C7C7CB90B38DCB4
SHA1: 1505D20F2753494F43C3B8E6F8E95BD527D00325
PESHA1: 1B838BDD05F0B4EE0ECFB56B63A13DBB7CE9D72A
PE256: 1D66C503C654291DF54AAF8CFAB53A020B90F120C9B69981A480C7C278DAE7AC
SHA256: C5160D2C97A31EB74C3A0FC11524BA39849A73CAFFED6F0100074D88086FF918
IMP: n/a
VT detection: 3/74
VT link:
https://www.virustotal.com/gui/file/
c5160d2c97a31eb74c3a0fc11524ba39849a73caffed6f0100074d88086ff918/detection