Infrastructure-as-a-Service

The collection of precise real-world behavior of malware has always been challenging. Malware depends on real-world conditions, Internet connectivity, and short-lived remote servers to reveal its behavior, while executing them unleashed in connected environments can have catastrophic consequences. Consequently, researchers typically rely on virtualized isolated environments, which are easily evaded by modern malware. We present JUGAAD, a first-of-its-kind malware behavior-as-a-service, which provides a real-world heterogeneous testbed with Internet connectivity to execute malware. It enables users to submit malware hashes or programs and retrieve their precise and comprehensive real-world run-time characteristics, across the computing stack, including network, operating system, and hardware. The unbiased, comprehensive view of malware activity fast-tracks research while offloading the time, effort, infrastructure, and risks involved in collecting such data.