Buster Sandbox Analyzer [system analysis utility]

Submit portable freeware that you find here. It helps if you include information like description, extraction instruction, Unicode support, whether it writes to the registry, and so on.
Post Reply
Message
Author
User avatar
I am Baas
Posts: 4150
Joined: Thu Aug 07, 2008 4:51 am

Buster Sandbox Analyzer [system analysis utility]

#1 Post by I am Baas »

Buster Sandbox Analyzer is a tool that has been designed to analyze the behaviour of processes and the changes made to system and then evaluate if they are malware suspicious.
http://bsa.isoftware.nl/

Download @ http://bsa.isoftware.nl/bsa.rar
Top
User avatar
I am Baas
Posts: 4150
Joined: Thu Aug 07, 2008 4:51 am

Re: Buster Sandbox Analyzer V1.39

#2 Post by I am Baas »

V1.52 is up (25 March 2012):
Added support for HTML reports

Added a feature to remove sandbox folder contents automatically in manual mode

Included new malware behaviour

Updated LOG_API

Fixed several bugs
Complete changelog @ http://bsa.isoftware.nl/frame8.htm

Info about the Network Packet Sniffer and requirements.

Dl @ http://bsa.isoftware.nl/bsa.rar
Top
User avatar
Midas
Posts: 6727
Joined: Mon Dec 07, 2009 7:09 am
Location: Sol3

Re: Buster Sandbox Analyzer [system analysis utility]

#3 Post by Midas »

Old topic update: Buster Sandbox Analyzer v1.92 released, dated 2021-08-22[?] (available changelog up tp v1.88 at http://bsa.isoftware.nl/frame8.htm).

As noted by Baas above, download from http://bsa.isoftware.nl/bsa.rar (current 'bsa.rar' MD5 hash: 3917fcb14b2b0edfab2c47dacb7fb5ca).


For more info, see also https://www.wilderssecurity.com/threads/428538/ ...
Top
User avatar
Midas
Posts: 6727
Joined: Mon Dec 07, 2009 7:09 am
Location: Sol3

Re: Buster Sandbox Analyzer [system analysis utility]

#4 Post by Midas »

:!: Firefox refused to directly download BSA, throwing a "Potential Security Risk" warning.

After proceeding with the download and extracting it, 'BSA.EXE' won't run unless you have WinPCAP installed (or you copy 'Packet.dll' and 'wpcap.dll' from the 'PCAP' sub-folder to program folder); lastly, BSA will immediately exit if it can't find Sandboxie...

So here's the main BSA executable SigCheck info:

Code: Select all

BSA.EXE:
	Verified:	Unsigned
	Link date:	22:22 1992-06-19
	Publisher:	n/a
	Company:	n/a
	Description:	Buster Sandbox Analyzer
	Product:	Buster Sandbox Analyzer
	Prod version:	1.92.0.0
	File version:	1.92.0.0
	MachineType:	32-bit
	MD5:	922F55659A9CF0424C7C7CB90B38DCB4
	SHA1:	1505D20F2753494F43C3B8E6F8E95BD527D00325
	PESHA1:	1B838BDD05F0B4EE0ECFB56B63A13DBB7CE9D72A
	PE256:	1D66C503C654291DF54AAF8CFAB53A020B90F120C9B69981A480C7C278DAE7AC
	SHA256:	C5160D2C97A31EB74C3A0FC11524BA39849A73CAFFED6F0100074D88086FF918
	IMP:	n/a
	VT detection:	3/74
	VT link:
https://www.virustotal.com/gui/file/
c5160d2c97a31eb74c3a0fc11524ba39849a73caffed6f0100074d88086ff918/detection
Top
Post Reply

Return to “Portable Freeware Submission”