Orion Malware: Advanced File Detection and Analysis Solution
Protect your organisations and systems from file-based attacks with a comprehensive solution, tailored to meet all cyber protection needs
Why you need Orion Malware
3 Essential Functions
All-in-one solution
Deployable on a physical server or as SaaS, Orion Malware supports all your cyber security teams and adapts to every SOC, CSIRT/CERT or Threat Intelligence.
Detect and analyse known and unknown threats
Secure your information systems by sharing IOCs
Support all your teams involved in cyber protection
Wide Range of Use Cases
Protection against advanced threats and ransomware
- Detect the threat and enable it to be blocked
- Set up a complete detection chain
- Enable cyber teams to act before data is compromised, stolen or destroyed
Safety Incident
- Detection of the most advanced known and unknown threats
- Saves time for SOC and CSIRT teams with an in-depth analysis in just a few minutes
In-depth malware analysis
- Significant time savings
- Behavioural analysis with a high level of detail on malware activity
Orion Malware Equips Decontamination Stations
Download the Orion Malware brochure
information
Detailed information regarding our file detection and analysis solution
English brochure
Orion Malware - English
French brochure
Orion Malware - French
German brochure
Orion Malware - German
Spanish brochure
Orion Malware - Spanish
- English brochure
- French brochure
- German brochure
- Spanish brochure
Orion Malware - English
Orion Malware - French
Orion Malware - German
Orion Malware - Spanish
Still have some questions?
Is Orion Malware available in different versions?
Yes - Orion Malware is available in two versions to suit your safety requirements.
An all-in-one version, including all the analysis engines for the very best in cyber detection
A multi-AV version, for rapid first-level analysis
Does Orion Malware adapt to different types of users?
Yes, Orion Malware offers two access portals to suit all types of users:
Expert Portal: Cyber security teams can access all functionalities (define the analysis workflow, search and consult full reports, export IoCs, replay the analysis, export a memory dump, etc.)
Lite Portal: Users with no prior expertise in cyber security can check files before using them if in doubt. They become involved in their organisation's cyber security efforts. The portal enables users to submit their files and obtain a simplified result.
What are the Orion Malware key features?
Combined static and dynamic scanning engines based on heuristics and AI detection models
5 antivirus engines
Dynamic analysis
Customisable dual reputation list
Advanced static analysis scanner
An open, modular platform
Configuration of analysis workflows
Management of dynamic and behavioural heuristics, IA models
Easy integration and support for your Threat Intelligence Services
Specific web portals
REST and ICAP APIs for automated analysis
Export of analysis results in SYSLOG format for SIEM
Threat Intelligence sharing with exports of IoCs and detection rules
... and more!
What information does the analysis report contain?
Global threat indicator
Malware behavioural analysis
MITRE ATT&CL classification
Indicators of compromise
Is Orion Malware available in different formats?
Yes, Orion Malware has a range of integrated servers (S, M, L, XL) that suit all your cyber needs.
Orion Malware is also available as a SaaS subscription.
Do you provide support and updates?
Yes we provide continuous updating of the detection package as well as technical and functional support (FR and EN). Moreover, three training courses are available (Analyst, Expert, Administrator).
Airbus can help you integrate Orion Malware into your cyber defence chain and develop specific connectors.