Orion Malware: Advanced file-based threats detection solution

Protect your organisations and systems from file-based attacks with a comprehensive solution, tailored to meet all cyber protection needs

Detection of Malware

Why you need Orion Malware

Detect the Most Advanced Malware

Orion Malware integrates antivirus and static analysis engines with Artificial Intelligence (AI) and dynamic analysis to spot the most advanced malwares

Reduce Analysis Time

Orion Malware saves you valuable time by carrying out in-depth threat analysis, providing detailed reports to prevent future attacks or contain them in the event of an incident

Comprehensive Analysis Reports

The analysis reports include an overall level of risk, malware tactics and techniques and the export of Indicators of Compromise (IOCs)

Awarded Solution

Orion Malware received the France Cybersecurity 2022 label that highlights cyber excellence

3 Essential Functions

All-in-one solution

Deployable on a physical server or as SaaS, Orion Malware supports all your cyber security teams and adapts to every SOC, CSIRT/CERT or Threat Intelligence.

Detect and analyse known and unknown threats

Secure your information systems by sharing IOCs

Support all your teams involved in cyber protection

Image of a cyber landscape where a malware is detected

Wide Range of Use Cases

Protection against advanced threats and ransomware

  • Detect the threat and enable it to be blocked
  • Set up a complete detection chain
  • Enable cyber teams to act before data is compromised, stolen or destroyed

Safety Incident

  • Detection of the most advanced known and unknown threats
  • Saves time for SOC and CSIRT teams with an in-depth analysis in just a few minutes

In-depth malware analysis

  • Significant time savings
  • Behavioural analysis with a high level of detail on malware activity

...And more!

Orion Malware Equips Decontamination Stations

Download the Orion Malware brochure

information

Detailed information regarding our file detection and analysis solution

English brochure

Orion Malware - English

French brochure

Orion Malware - French

German brochure

Orion Malware - German

Spanish brochure

Orion Malware - Spanish

Orion Malware - English

Orion Malware - French

Orion Malware - German

Orion Malware - Spanish

Want to know more?

Our sales team and cyber experts will be happy to provide more information or discuss your specific requirements.

Contact us

Still have some questions?

What are the different versions of Orion Malware?

Orion Malware is available in two versions to suit your safety requirements.

An all-in-one version, including all the analysis engines for the very best in cyber detection

A multi-AV version, for rapid first-level analysis

Does Orion Malware adapt to different types of users?

Yes, Orion Malware offers two access portals to suit all types of users:

Expert Portal: Cyber security teams can access all functionalities (define the analysis workflow, search and consult full reports, export IoCs, replay the analysis, export a memory dump, etc.)

Lite Portal: Users with no prior expertise in cyber security can check files before using them if in doubt. They become involved in their organisation's cyber security efforts. The portal enables users to submit their files and obtain a simplified result.

What are the Orion Malware key features?

Combined static and dynamic scanning engines based on heuristics and AI detection models

5 antivirus engines

Dynamic analysis

Customisable dual reputation list

Advanced static analysis scanner

An open, modular platform

Configuration of analysis workflows

Management of dynamic and behavioural heuristics, IA models

Easy integration and support for your Threat Intelligence Services

Specific web portals

REST and ICAP APIs for automated analysis

Export of analysis results in SYSLOG format for SIEM 

Threat Intelligence sharing with exports of IoCs and detection rules

... and more!

What information does the analysis report contain?

Global threat indicator

Malware behavioural analysis

MITRE ATT&CL classification

Indicators of compromise

What are the different deployment modes?

Orion Malware has a range of integrated servers (S, M, L, XL) that suit all your cyber needs.

Orion Malware is also available as a SaaS subscription.

Do you provide support and updates?

Yes we provide continuous updating of the detection package as well as technical and functional support (FR and EN). Moreover, three training courses are available (Analyst, Expert, Administrator).

Airbus can help you integrate Orion Malware into your cyber defence chain and develop specific connectors.

Does Orion Malware support Online and Offline modes?

Yes! Orion Malware servers support Online and Offline modes.

Our Other Cyber Solutions

See all products