TITANIUMCLOUD™ CLASSIFIES UP-TO-DATE INFORMATION AND PROVIDES POWERFUL ALERT WEB SERVICES ON OVER 1 BILLION MALICIOUS AND NON-MALICIOUS FILES AND THEIR INTERNALS. ReversingLabs, the global leader in automated static malware analysis tools and services, announced today the TitaniumCloud™ (TiCloud™) web service that provides the industry’s most comprehensive source for threat intelligence on unknown files.
The TitaniumCloud database contains information on:
“TiCloud allows our customers to quickly classify suspicious files as they arrive in their organizations,” said Mario Vuksan, CEO of ReversingLabs. “This saves them hours of analysis on files already known to the industry and analyzed by a variety of tools.”
TiCloud supports powerful queries and alerts. Queries support advanced searches based on file contents, including: file hash, section hash, certificate information, imports, exports, section names and embedded strings. Alert services use custom-defined rules to check for conditions that spur notification. Initially, TiCloud supports three alert services:
TiCloud not only identifies files but also provides rich information about their contents. Every sample is processed using the ReversingLabs TitaniumCore™ (TiCore™) automated static decomposition engine to extract all contained files and their internal information. The samples are recursively unpacked, decompressed, decrypted, repaired and de-obfuscated. The information extracted for the resulting components includes format, format validation, strings, sections and certificate chains. Samples are also scanned twice daily with 25 anti-virus products and the history is stored in TiCloud.
TiCloud supports automated workflows through a REST or SOAP-based web services interface. In addition to the cloud service, customers can purchase an on-premise appliance to meet high performance and security requirements. The web services interface enables customers to integrate TiCloud with their applications and workflow.