O'Reilly logo

Cuckoo Malware Analysis by Iqbal Muhardianto, Digit Oktavianto

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Automating e-mail attachments with Cuckoo MX

Have you ever heard about CuckooMX? It is a project by Xavier Mertens, you can read it at http://blog.rootshell.be/2012/06/20/cuckoomx-automating-email-attachments-scanning-with-cuckoo/.

CuckooMX automatically sends all the e-mail attachments to Cuckoo Sandbox, obviously, so that it can be analyzed whether the attachments—of types such as PDF, MS Office, ZIP, or other executable files—contain malware or not.

Here is a figure that might help us get a better picture of what CuckooMX does:

Automating e-mail attachments with Cuckoo MX

In the preceding figure, we can see that CuckooMX performs these tasks:

  1. It captures the e-mail flow at MTA (Message/Mail ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required