Unique Malware Detection
When your team sends an unknown file to Lastline, our Deep Content Inspection environment treats it as malware. Deep Content Inspection is designed to provide complete visibility into the behavior of malware while keeping it private.
Advanced malware can determine whether a real user is on the device or in an environment such as a sandbox or virtual machine (VM). When it detects these environments, it changes its behavior and avoids being detected. Deep Content Inspection can remain confidential even when identifying malware with cloaking techniques, and then provide appropriate data entry to analyze all malicious behavior.
Deep Content Inspection Advantages
Sandbox and virtual machines (VMs) have visibility only up to the operating level level and cannot provide complete malware control. They can review content and identify potentially malicious code, but have lower detection rates and higher false-positive rates because they cannot interact with malware or detect avoidance techniques.
Deep Content Inspection detection algorithms are located outside the operating system level, where other brands cannot. This malware control architecture allows us to see much more than other tools can see because we are not only at the operating system level, but also within the hardware level. Malicious software cannot execute a behavior that Lastline Analyst cannot see.