What's New Parent topic

What's New in Deep Discovery Analyzer 6.1

Feature/Enhancement
Details
Integration with Deep Discovery Director 3.0
Deep Discovery Analyzer supports integration with Deep Discovery Director 3.0. This release adds the following features:
  • Upload of suspicious objects generated by the internal Virtual Analyzer to Deep Discovery Director
  • Download of User-Defined Suspicious Objects from Deep Discovery Director
  • Download of exceptions from Deep Discovery Director
  • Download of YARA rule files from Deep Discovery Director
Enhanced Virtual Analyzer
The internal Virtual Analyzer has been enhanced. This release adds the following features:
  • Support for Windows 10 RS3 and Windows Server 2016 as Virtual Analyzer images
  • Sandcastle SPN feedback
  • Predictive Machine Learning support for VBS file type
  • URL analysis results in Suspicious Objects table
  • Coin Miner as a new threat category and threat type
  • New file types (slk and iqy) for sandbox analysis
Support for Deep Discovery Analyzer 1200 appliance
Deep Discovery Analyzer supports the new Deep Discovery Analyzer 1200 appliance.
Support for multiple syslog servers
Deep Discovery Analyzer adds support for multiple syslog servers to enable easier multi-department sharing.
Alerts enhancements
The Alert module has been enhanced. This release adds the following features:
  • Check Interval and Check Duration settings for High CPU Usage alerts
  • Check Interval and Check Duration settings for High Memory Usage alerts
  • Check Interval setting for High Disk Usage alerts
  • Configurable Monitored services for Connection Issue alerts
  • New Long Virtual Analyzer Processing Time alert type to check if the process time it takes to analyze samples has exceeded the threshold
Download of password protected samples on the Unsuccessful tab
The Unsuccessful tab provides a download link for samples to facilitate checking of samples which were not successfully processed. Samples are password protected for additional security.
Debug log collection from passive primary node
Deep Discovery Analyzer enables the collection of debug logs from the passive primary node. The logs are collected from the web UI of the active primary node.
Power off / Restart menu on preconfiguration console
Deep Discovery Analyzer adds the option to power off and restart the appliance using the preconfiguration console.
Inline migration from Deep Discovery Analyzer 5.8 and 6.0
Deep Discovery Analyzer can automatically migrate the settings of a Deep Discovery Analyzer 5.8 and 6.0 installation to 6.1.