question

matblake1234-7561 avatar image
0 Votes"
matblake1234-7561 asked ·

Is it allowable to run malware analysis in a sandbox on the azure platform ?

I’m a cyber security student , I would like to know if it is allowable to conduct malware analysis in the cloud using the azure platform? I intend to create a sandbox environment to analyse a sample of ransomware.

azure-virtual-machines
· 1
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.


Is there an update?
Please "Accept as answer" wherever the information provided helps you to help others in the community.

0 Votes 0 ·

1 Answer

karishmatiwari-msft avatar image
0 Votes"
karishmatiwari-msft answered ·

Hello,

I am sharing the bits of a good answer provided by my colleague on MSDN for a similar question. Please refer to this MSDN thread for the complete answer.




If you are looking to setup something for malware in Azure you will want to stick with IaaS solution. (Infrastructure as a service) this is because the environment is managed by you and we don't take care of any of the Guest OS level security. For SaaS and PaaS the platform handles the security so deploying anything with malware would be quickly removed or resolved.

So if you are looking to try this environment in Azure, the using VMs would be the place to test it. The upside of using Azure would be that if you need to delete the VM or the environment you can easily do that and deploy a fresh one. The ability to isolate VMs from one another or allow them to communicate would also be good for testing how things spread but with the ability to limit traffic to a single Vnet you could actually contain any tests.

· Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.