Is it allowable to run malware analysis in a sandbox on the azure platform ?

matblake1234 1 Reputation point
2020-01-15T07:45:25.957+00:00

I’m a cyber security student , I would like to know if it is allowable to conduct malware analysis in the cloud using the azure platform? I intend to create a sandbox environment to analyse a sample of ransomware.

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,360 questions
{count} votes

1 answer

Sort by: Most helpful
  1. KarishmaTiwari-MSFT 18,647 Reputation points Microsoft Employee
    2020-01-15T23:19:49.923+00:00

    Hello,

    I am sharing the bits of a good answer provided by my colleague on MSDN for a similar question. Please refer to this MSDN thread for the complete answer.

    If you are looking to setup something for malware in Azure you will want to stick with IaaS solution. (Infrastructure as a service) this is because the environment is managed by you and we don't take care of any of the Guest OS level security. For SaaS and PaaS the platform handles the security so deploying anything with malware would be quickly removed or resolved.

    So if you are looking to try this environment in Azure, the using VMs would be the place to test it. The upside of using Azure would be that if you need to delete the VM or the environment you can easily do that and deploy a fresh one. The ability to isolate VMs from one another or allow them to communicate would also be good for testing how things spread but with the ability to limit traffic to a single Vnet you could actually contain any tests.

    0 comments No comments