Sandbox

File: Drag and drop a file or click Browse to select a file from your system for sandbox analysis. For more information on supported file formats and size limits, see Supported File Types and Size.

Hash: Enter a valid SHA256 hash to submit an existing artifact for sandbox analysis. Analysis proceeds only if a file associated with the provided hash is available.

URL: Enter a valid URL or domain name for sandbox analysis.

QR Code: Drag and drop or click Browse to upload a file containing a QR code that resolves to a valid URL. The decoded URL is submitted for sandbox analysis. For more information on supported file formats and size limits, see Supported File Types and Size.

Extract ZIP File: Select this option to extract and analyze the contents of an uploaded ZIP file instead of analyzing the ZIP file as a single artifact. By default, this checkbox is selected.

Password (Optional): Enter the password if the uploaded ZIP file is password-protected. The password is used to extract the archive before analysis. If you select Extract ZIP File and do not provide a password or provide an incorrect password, the submission fails. For more information, see Frequently Asked Questions (FAQs).

URL: Displays the URL identified after resolving the submitted QR code file.

Community: Displays the community for your submission. This is always Private, meaning only your organization can view it.

Sandbox Provider: Select one or more of the following providers to run the analysis in sandbox environments:

Internet Access: Choose whether the sandbox environment has internet connectivity. When enabled (default), the sample can connect to external servers, fetch payloads, and trigger behaviors that require internet access. Disable it to run the analysis in a fully isolated environment.