This is the Cuckoo Sandbox Monitor, one of the core elements of Cuckoo Sandbox. CuckooMon provides Cuckoo Sandbox the ability to intercept the execution flow of a potential malicious sample.
Through Cuckoo Sandbox it is able to monitor all kinds of samples, such as executables, office files (Microsoft Word, Microsoft Excel), PDF files, and much more; virtually anything that can be ran on windows (in usermode.)
- Jurriaan Bremer
- Mark Schloesser
- Claudio Guarnieri