Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.
Training Camp • Cybersecurity Glossary
Sandbox evasion is a malware technique for detecting analysis environments or VMs and withholding malicious behavior to defeat dynamic analysis.
Sandbox Evasion Definition: Sandbox evasion is a malware technique for detecting analysis environments or VMs and withholding malicious behavior to defeat dynamic analysis.
Sandbox evasion refers to techniques malware uses to detect when it is running inside an automated analysis environment or virtual machine and to alter its behavior to avoid exposing its true intent. Common methods include checking for VM artifacts, low resource counts, mouse inactivity, or known analysis processes, and delaying or suppressing the malicious payload accordingly. By staying dormant in sandboxes, malware defeats dynamic analysis and reaches real victim systems before activating.
Turn knowledge into credentials with our instructor-led cybersecurity boot camps.
View All Courses →