Static Analysis Report

Download PDF

The static analysis page displays the results of analyzing the file's static information, meaning the examination of the file's contents without executing it.

In the tLab system, the threat level of static analysis is calculated based on static threat indicators, such as the import of suspicious API functions, the presence of scripts and macros in documents, anomalous section structures, encrypted data, low-level operations capability, embedded files, and more.

The static analysis report contains specific information depending on the file type.

For PE executable files:

A collapsible list of imported modules and functions;
A list of exported functions;
A list of extracted strings with partial match search functionality;
Program icon;
Information about executable file sections.
For MS Office and PDF files: document metadata such as author, number of pages, title, year, etc.
For script analysis:
- Possible activity;
- Detected activity;
For Android application analysis:
- Application information;
- Android analysis;

*Fig. 14.1 – Android Application Analysis Report*

*Fig. 14.2 – Android Application Analysis Report*