CrowdStrike leverages VMRay technology to enhance threat intelligence capabilities

Share Article

VMRay GmbH, provider of the fastest and most comprehensive threat analysis capabilities in the market, announced today that it has entered into a technology partnership with CrowdStrike Inc., a leading provider of next-generation endpoint protection, threat intelligence, and incident response services. The relationship includes CrowdStrike implementing VMRay’s 3rd generation malware analysis technology to augment its security cloud with indicators extracted from its massive repository of malware samples.

VMRay's 3rd generation technology provides cutting edge capabilities for rapid analysis and extraction of threat indicators from malware samples in the CrowdStrike Advanced Threat Intelligence Cloud.

CrowdStrike’s market-leading threat intelligence offering, CrowdStrike Falcon Intelligence, enables customers to develop insights into the identity, motives, and techniques of advanced adversaries, leverage strategic and actionable intelligence to respond to current threats and plan for threats in the future, and gain context into activity that requires immediate attention. With the inclusion of VMRay’s technology, CrowdStrike can now more efficiently and rapidly extract threat intelligence indicators out of its extensive malware collection, which exceeds 250 terabytes.

"The malware virtual machine detonation industry is constantly playing catch-up with the hackers" said Dmitri Alperovitch, Co-Founder and CTO of CrowdStrike. "VMRay's third generation technology provides cutting edge capabilities for rapid analysis and extraction of threat indicators from malware samples in the CrowdStrike Advanced Threat Intelligence Cloud. VMRay Analyzer is able to rapidly analyze zero day threats, targeted attacks, 64-bit rootkits and malware that evades existing virtual machine detonation technologies in the market today."

VMRay’s innovative 3rd generation analysis technology provides the fastest possible threat detection in the market today. By instrumenting novel hardware virtualization extensions, analyzed malware runs on bare-metal most of the time and therefore executes with nearly native performance. While using virtual machines as a platform for malware analysis is not new, the 3rd generation approach is revolutionary.

VMRay is directly integrated into the hypervisor, and because no single bit is modified inside the VM, the analysis process is invisible and cannot be evaded by the malware. By combining this with a unique monitoring methodology, the level of detail and the amount of information provided is magnitudes higher than with traditional analysis systems: VMRay monitors all interaction between the analyzed malware and the operating system and installed applications.

"The technology partnership with CrowdStrike is extremely gratifying because it provides further validation of the unique malware analysis technology that VMRay has developed," said Carsten Willems, CEO of VMRay. "The relationship with CrowdStrike demonstrates their commitment to help protect some of the world’s largest organizations against today’s highly sophisticated adversaries and the destruction they can inflict."

About CrowdStrike:
CrowdStrike™ is a leading provider of next-generation endpoint protection, threat intelligence, and incident response services. CrowdStrike Falcon enables customers to prevent damage from targeted attacks, detect and attribute advanced malware and adversary activity in real time, and effortlessly search all endpoints, reducing overall incident response time. CrowdStrike customers include some of the largest blue chip companies in the financial services, energy, oil & gas, telecommunications, retail, and technology sectors, along with some of the largest and most sophisticated government agencies worldwide. To learn more, please visit http://www.crowdstrike.com.

About VMRay GmbH:
VMRay GmbH was founded in Bochum, Germany in September 2013 by Dr. Carsten Willems and Dr. Ralf Hund. Both founders have extensive experience in the creation of malware analysis solutions. Amongst others, they developed CWSandbox, one of the first commercial malware analyzers on the market that was later renamed to GFISandbox, and finally to ThreatAnalyzer.

Their latest innovation, the 3rd generation VMRay Analyzer, provides best-in-class threat detection capabilities, delivering sophisticated analysis for any piece of malware, including the newest and most dangerous threats like 64-bit rootkits, quickly and reliably. Key shareholders of VMRay GmbH are the two founders and the High-Tech Gruenderfonds (or HTGF), a public-private venture capital investment firm based in Bonn, Germany. For additional information, please visit http://www.vmray.com

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Carsten WIllems
VMRay GmbH
+49 23497355400
Email >
@VMRayGmbH
since: 11/2013
Follow >
Visit website