Carbon Black TAU unveils binary emulator Binee for Malware Researchers
By Akshay Kedari  Date: 2019-08-12

Carbon Black TAU unveils binary emulator Binee for Malware Researchers
  • The open source emulator is specifically designed for Malware Researchers
  • The product, also known as “Binee”, was unveiled at DEF CON 27 in Las Vegas

Carbon Black, a cybersecurity company based in Waltham, Massachusetts, reportedly announced the unveiling of “Binee”, a binary emulator that links the gap between dynamic and static real-world malware analysis. Binee supports researchers to retrieve run-time data out of binaries for a speed, cost and scale earlier only possible through static analysis tools.

Researchers at Carbon Black Threat Analysis Unit (TAU), John Holowczak and Kyle Gwinnup told about the tool with name being an abbreviation for “Binary Emulation Environment,” at their seminar “Next Generation Process Emulation with Binee” during DEF CON 27 on 10th August.

Malware detection by standard static analysis is getting difficult & researchers are turning towards dynamic analysis techniques for understanding the malware’s behavior they are studying. However, dynamic analysis is time-consuming and costly, so a very small portion could be assessed like this. Binee bridges this gap by using mock process emulation by providing runtime analysis at the cost and speed of static analysis.

The capability to emulate ×86 as well as other architectures has been around from a long time – malware analysts have many tools already available at public domain. A lot of tools are short of entire emulation, by system calls not getting implemented into emulator or by doing strange things while emulation of library functions or by halting.

Company has developed this tool keeping in mind two main use cases, first for malware analysts who require custom operating system & framework without dealing with the overhead of spinning number of virtual machine configurations, and second, for extracting data at scale with a speed and cost same as that of commonly-used static analysis tools.

Binee can be utilized as a crucial part for malware analysis funnel – enabling security professionals to analyze and identify malware’s behavioral attributes. This eventually would open huge data set for machine learning and behavioral analysis that would enhance detection capabilities.

Credit Source:

https://www.globenewswire.com/news-release/2019/08/10/1900195/0/en/Carbon-Black-Threat-Analysis-Unit-TAU-Launches-Binee-an-Open-Source-Binary-Emulator-for-Malware-Researchers-at-DEF-CON-27.html

      

About Author

Akshay Kedari    

Akshay Kedari

A qualified computer engineering graduate, Akshay Kedari takes pride in having his way with words. Following his passion for content creation, he writes insightful pieces on aeresearch.net and a few other portals. Also endorsed with a short-term experience in web deve...

Read More

More News By Akshay Kedari

Chancellor Rishi Sunak pledges £100bn to transform UK’s infrastructure
Chancellor Rishi Sunak pledges £100bn to transform UK’s infrastructure
By Akshay Kedari

As per the statement of chancellor Rishi Sunak, Britain’s first nationwide infrastructure plan would provide a “once in a lifetime investment” of approximately £100 billion to drive the nation’s recovery from the COVID-1...

Telus Communications selects Nokia to deliver 5G services in Canada
Telus Communications selects Nokia to deliver 5G services in Canada
By Akshay Kedari

According to reliable sources, Nokia Corporation has reportedly been selected by Canada-based Telus Communications Inc. to provide 5G services in Canada. The Finnish multinational technology giant will reportedly support the Canadian mobile service o...

TBI, Oracle to jointly launch cloud-based vaccine management system
TBI, Oracle to jointly launch cloud-based vaccine management system
By Akshay Kedari

Tony Blair Institute (TBI) and Oracle have recently introduced cloud technology to Africa for effective management of public health programs in the region. As per credible sources, initially, Ghana, Sierra Leone and Rwanda will use the new Oracl...

Minerva Bunkering unveils ADP for better clarity in bunker deliveries
Minerva Bunkering unveils ADP for better clarity in bunker deliveries
By Akshay Kedari

Swiss supplier of marine fuels Minerva Bunkering has reportedly introduced an innovative solution called Advanced Delivery Platform (ADP) in a bid to increase efficiency and transparency during bunkering operations. According to reliable sources, Min...

TestGorilla secures $1.2M in CapitalT-led pre-Series A funding round
TestGorilla secures $1.2M in CapitalT-led pre-Series A funding round
By Akshay Kedari

In a pre-Series A funding initiative led by a consortium of international angel investors and CapitalT, pre-employment testing software player, TestGorilla, has reportedly secured an amount of USD 1.2 million. This announcement comes amid TestGorilla...