Carbon Black TAU unveils binary emulator Binee for Malware Researchers
By Akshay Kedari  Date: 2019-08-12

Carbon Black TAU unveils binary emulator Binee for Malware Researchers
  • The open source emulator is specifically designed for Malware Researchers
  • The product, also known as “Binee”, was unveiled at DEF CON 27 in Las Vegas

Carbon Black, a cybersecurity company based in Waltham, Massachusetts, reportedly announced the unveiling of “Binee”, a binary emulator that links the gap between dynamic and static real-world malware analysis. Binee supports researchers to retrieve run-time data out of binaries for a speed, cost and scale earlier only possible through static analysis tools.

Researchers at Carbon Black Threat Analysis Unit (TAU), John Holowczak and Kyle Gwinnup told about the tool with name being an abbreviation for “Binary Emulation Environment,” at their seminar “Next Generation Process Emulation with Binee” during DEF CON 27 on 10th August.

Malware detection by standard static analysis is getting difficult & researchers are turning towards dynamic analysis techniques for understanding the malware’s behavior they are studying. However, dynamic analysis is time-consuming and costly, so a very small portion could be assessed like this. Binee bridges this gap by using mock process emulation by providing runtime analysis at the cost and speed of static analysis.

The capability to emulate ×86 as well as other architectures has been around from a long time – malware analysts have many tools already available at public domain. A lot of tools are short of entire emulation, by system calls not getting implemented into emulator or by doing strange things while emulation of library functions or by halting.

Company has developed this tool keeping in mind two main use cases, first for malware analysts who require custom operating system & framework without dealing with the overhead of spinning number of virtual machine configurations, and second, for extracting data at scale with a speed and cost same as that of commonly-used static analysis tools.

Binee can be utilized as a crucial part for malware analysis funnel – enabling security professionals to analyze and identify malware’s behavioral attributes. This eventually would open huge data set for machine learning and behavioral analysis that would enhance detection capabilities.

Credit Source:

https://www.globenewswire.com/news-release/2019/08/10/1900195/0/en/Carbon-Black-Threat-Analysis-Unit-TAU-Launches-Binee-an-Open-Source-Binary-Emulator-for-Malware-Researchers-at-DEF-CON-27.html

      

About Author

Akshay Kedari    

Akshay Kedari

A qualified computer engineering graduate, Akshay Kedari takes pride in having his way with words. Following his passion for content creation, he writes insightful pieces on aeresearch.net and a few other portals. Also endorsed with a short-term experience in web deve...

Read More

More News By Akshay Kedari

Fibonacci Brands acquires Darwin from Harvest Health & Recreation
Fibonacci Brands acquires Darwin from Harvest Health & Recreation
By Akshay Kedari

Fibonacci Brands has recently announced the acquisition of Darwin from Harvest Health & Recreation (HARV.CN) as its foundation brand. Fibonacci is a leading player in the international cannabis industry. According to James George, founder of Fib...

GVN adds EVIT Center and Chumakov as its new Centers of Excellence
GVN adds EVIT Center and Chumakov as its new Centers of Excellence
By Akshay Kedari

The Global Virus Network (GVN), an international coalition of medical virologists, has recently announced the addition of Australian and Russian researchers. GVN is adding the Center for EVIT (Emerging Viruses, Inflammation & Therapeutics) of th...

Wind Point Partners takes over RTIC to expand business portfolio
Wind Point Partners takes over RTIC to expand business portfolio
By Akshay Kedari

American private equity firm, Wind Point Partners has recently signed an acquisition deal with the one of the biggest direct-to-consumer (D2C) eCommerce providers of drinkware, RTIC. Reportedly, RTIC is Wind Point’s third acquisition of a famil...

Novartis reveals positive data from Phase III ORION trials of inclisiran
Novartis reveals positive data from Phase III ORION trials of inclisiran
By Akshay Kedari

Swiss multinational pharmaceutical firm, Novartis has recently announced results from its Phase III ORION-10 and -11 studies that focus on assessing the individual responses of patients on lowering low-density lipoprotein cholesterol (LDL-C) with inc...

Medtronic to acquire Companion Medical to expand diabetes business
Medtronic to acquire Companion Medical to expand diabetes business
By Akshay Kedari

Medtronic plc, the global leader in medical technologies, has reportedly announced that it is planning to acquire insulin pen manufacturer Companion Medical. The acquisition gives Medtronic access to Companion Medical’s ‘InPen’, wh...