About

ANY.RUN is an interactive sandbox that lets users upload suspicious files or URLs and execute them in a contained, virtual environment to observe their behavior (process creation, network connections, file system changes, registry activity, etc.). Unlike static analysis tools (which just examine code without running it), ANY.RUN allows real‑time interaction with the malware. It also offers threat intelligence functionality: you can query IPs, domains, file hashes, get indicators of compromise (IOCs), and cross-check with known threat feeds. The platform is cloud‑based and accessed via browser, so users don’t need to maintain their own isolated malware laboratories.

References

ANY.RUN - Wikipedia

ANY.RUN: Interactive Malware Analysis Sandbox Platform

MSSP – ANY.RUN Sponsor Page | MSSP Alert