Abstract

IT security teams at small companies are often understaffed and overworked, according to a survey published by Sophos (June 2019). ReapRE is an automated malware analysis tool designed to assist analysts at small businesses. Unlike other costly solutions, the analyst will not have to worry about potential confidential data leakage resulting from a 3rd party application breach, as everything will be hosted internally. A potentially malicious document will be uploaded by an analyst into a locally hosted instance of our application, where it will then be run against a stack of malware analysis tools. A summarized report will be given to the analyst based on its findings and a list of indicators of compromise (hashes, IPs, URLs, domains, etc.). After review, the analyst is able to import the IOCs into a local database, Malware Information Sharing Platform (MISP).