Trellix Intelligent Sandbox 5.2.2 adds new features, enhancements, and additional platforms, environments, and operating systems, such as:
- Support for OneNote files
- Improved detection capabilities
- Retrained Machine Learning model
- Support for the common detection package across all versions
- Increased coverage of MITRE TTPs
- New CLI commands
- Support for Antimalware Scan Interface (AMSI)
- Rebranding changes
- Upgraded to OpenSSL-1.0.2zg (CVE-2023-0286)
- Upgraded to Trellix Agent RPMS version 5.7.9 (CVE-2023-0975 and CVE-2022-0977)
- Added support for custom roles to view Analysis Status and Reports as well as download original samples for other users
- The Intelligent Sandbox VM Provisioner Tool has been updated to provide an enhanced VM creation and activation experience as well as better resource utilization
- Microsoft Edge support for Windows Server 2019
- Hyper-V support on Windows Server 2019
- More version support for software in analyzer VM
For a full list of changes, see the Release Notes.