Skip navigation
Skip navigation
You are using an outdated browser. Please upgrade your browser.

Threat researchers will share how they were able to generate 100 MB of detailed malware behavioural data on Flame in less than 5 minutes using GFI SandBox

London, UK – 14 June 2012 – GFI® Software will host a webinar Tuesday to demonstrate how properly deployed sandbox technology would have assisted enterprise cyber-security professionals in defending their networks from Flame, the recently discovered malware also known as Flamer, sKyWIper and Skywiper. GFI Software will host the free webinar, Analysing Flame, for enterprise cyber-security professionals on 19 June at 7pm BST.

Using GFI SandBox™ – one of the industry’s leading malware analysis solutions – the GFI Software Flame Taskforce has identified malware behaviour exhibited by Flame not yet reported by other security vendors or malware researchers. In less than 5 minutes, GFI Software was able to use GFI SandBox to generate more than 100 MB of data, which would provide GFI SandBox users with a rich and detailed analysis of exactly how Flame executes within an infected network.

“We will demonstrate how GFI SandBox customers would have been able to identify the malicious behaviour of Flame, which ideally illustrates how sandbox technology enables enterprises to detect undiscovered, highly sophisticated malware threats that evade traditional antivirus detection,” said Julian Waits, vice president of GFI Software’s Advanced Technology Group. “Armed with this information, enterprise cyber-security professionals know with certainty if their networks are being targeted or have already been compromised, enabling them to begin isolating and remediating the threat using all the security solutions at their disposal.”

The webinar will focus on several key malware behaviour traits that would have alerted GFI SandBox users that Flame was malicious, providing them with invaluable intelligence to immediately combat this threat and mitigate any damage it could cause. The team will discuss:

• Processes monitored during analysis
• The order in which Flame creates files
• How Flame evades detection
• Flame’s unique registry activity
• How Flame drivers are installed
• Additional insight into Mutex activity already reported
• How Flame hijacks and controls Microsoft® Internet Explorer®
• The network traffic generated by Flame

To learn how GFI SandBox can help enterprises defend themselves from advanced malware threats like Flame, register for the Analysing Flame webinar at

To learn more about GFI SandBox, visit, send email to or call 0870 770 5370.

About GFI

GFI Software provides web and mail security, archiving and fax, networking and security software and hosted IT solutions for small to medium-sized businesses (SMB) via an extensive global partner community. GFI products are available either as on-premise solutions, in the cloud or as a hybrid of both delivery models. With award-winning technology, a competitive pricing strategy, and a strong focus on the unique requirements of SMEs, GFI satisfies the IT needs of organisations on a global scale. The company has offices in the United States, United Kingdom, Austria, Australia, Malta, Hong Kong, Philippines and Romania, which together support hundreds of thousands of installations worldwide. GFI is a channel-focused company with thousands of partners throughout the world and is also a Microsoft Gold ISV Partner.

For more information:

GFI Software
Please email David Kelleher at
GFI - Malta: Tel: +356 2205 2000; Fax: +356 21382419.

Davies Murphy Group
Please email Janne Virtanen at
Tel: +44 1256 807360

Copyright © 2012 GFI Software. All rights reserved. All other trademarks are the property of their respective owners. To the best of our knowledge, all details were correct at the time of publishing; this information is subject to change without notice

This press release was distributed by ResponseSource Press Release Wire on behalf of GFI Software in the following categories: Business & Finance, Computing & Telecoms, for more information visit