Content & Malware Analysis

 View Only
  • 1.  Malware Analysis Tab missing? How to enable on Virtual CAS 3.0

    Posted Feb 10, 2024 09:29 AM
    Edited by JS_2022 Feb 10, 2024 09:35 AM

    I have built a new Virtual Content Analysis pair running 3.0 software. I am not clear on how to enable Malware analysis. Under licensing I have enabled 'Base license, Symantec Antivirus, Sandbox Broker, Symantec Cloud Sandboxing, Symantec Advanced Machine Learning, and File Reputation' yet I do not see a 'Malware Analysis' TAB like I did on our previous CAS S400 units.

    Am I missing a setting?



  • 2.  RE: Malware Analysis Tab missing? How to enable on Virtual CAS 3.0

    Posted Feb 13, 2024 01:07 AM

    Afaik - you need to buy:
    1. Malware Analysis (per core) Local Sandboxing Licence
    2. and a matching SSP-ISG-Appliance, because the Malware Analysis isn't running on other Virtualization environments as e.g. VMware

    This Licence is not included in the Web-Protection-Suite.
    This is how it was explained to me.

    As usual: "For complaints, please contact your Broadcom Account Manager..."  
    If it's any consolation, you're not alone with this problem.




  • 3.  RE: Malware Analysis Tab missing? How to enable on Virtual CAS 3.0

    Broadcom Employee
    Posted Apr 12, 2024 02:42 PM
    Edited by Jacob Miles Apr 12, 2024 02:47 PM

    Klaus is correct,

    For the CAS-S400 and CAS-S500 series hardware boxes, Malware Analysis was available as an optional add-on. It was not available on the CAS-S200 or the CAS-VA.

    With our new offering, Malware Analysis is available as standalone virtual appliance (ISG MA). ISG MA is only supported on the SSP hardware at this time. 

    With that said, you can do emulation sandboxing on the CAS VA, just not the virtualized Windows environments (intelliVMs) that were available under the Malware Analysis tab.