MalwareScope v1.0.0 - Initial Release

MalwareScope v1.0.0 - Initial Release

Initial public release of MalwareScope, a defensive malware analysis sandbox project built for cybersecurity learning and research.

Features

• Static malware analysis using Python
• MD5, SHA1, and SHA256 hash generation
• File type detection
• Readable string extraction
• Suspicious string indicator matching
• YARA rule-based scanning
• Windows PE file analysis
• Import table inspection
• Section entropy analysis
• Heuristic risk scoring
• JSON report generation
• HTML report generation
• Safe test sample included
• VirtualBox-based isolated VM workflow documented

Lab Safety

This project is designed for defensive cybersecurity education only. The recommended lab setup uses:

• Kali Linux host
• Windows analysis VM
• Host-only VirtualBox networking
• Disabled shared clipboard
• Disabled drag-and-drop
• Disabled shared folders
• Snapshot rollback using clean_state

Notes

No malware samples are included in this repository. The included sample file is harmless and only contains suspicious-looking strings for testing the analyzer.