Oxygen Forensic® Detective v.16.3 introduces a built-in malware detection module, enhancing security without additional costs. This feature empowers investigators to detect and analyze malware within files and email databases extracted from mobile devices, computers, and cloud services.
Configuring Scans
Users can customize settings to:
- Perform scans during data import
- Analyze file archives and email databases
- Apply heuristic analysis for smarter detection
- Set scan timeouts for efficiency
- Enable or disable specific scan features based on investigation needs
Executing Scans
Scans are conducted in the Malware section of extractions. This section displays comprehensive results, including detected threats and detailed scan information. Users can view threats categorized by type, severity, and affected files. Export options are available in PDF, XLS, and HTML formats, allowing for easy sharing and reporting.
Identifiable Threats
The malware detection module is capable of identifying a wide range of threats, such as:
- Adware: Software that displays unwanted advertisements
- Backdoors: Hidden methods of bypassing normal authentication
- Dialers: Programs that make unauthorized phone calls
- Phishing: Attempts to obtain sensitive information fraudulently
- Trojans: Malicious programs disguised as legitimate software
- Worms: Self-replicating malware that spreads across networks
Real-World Application
The malware detection feature has proven essential in real-world investigations. For example, it has helped law enforcement agencies uncover hidden malware used in criminal activities, enabling them to build stronger cases and bring perpetrators to justice. Corporate investigators have utilized this tool to detect and mitigate security breaches, protecting sensitive data and maintaining organizational integrity.
For more details, visit Oxygen Forensics.