Malware research
virus laboratory

To effectively defend against the virus, you need to understand its anatomy. VirLab technologies allow you to penetrate the structure of malware and disassemble it into "atoms".

works ahead of the curve

How do attackers work? What is their purpose? The laboratory provides answers to these and many other questions.
Virus analysts, both manually and using specially designed tools, are looking for malicious files and new types of attacks. Detailed monitoring of objects is carried out according to various criteria, including: region, keywords and others.

Parsing and object
into "atoms"

To track threats and prevent targeted attacks, you need to understand what danger the object is fraught with and how it works.
Virus analysts perform in-depth manual analysis of an object. Moreover, in the study, specialists rely on the result of dynamic analysis in the tLab system.


If the malware has extensive functionality, a detailed report is generated with a description of the object's operation and the result of the "tLab" scan. Yara rules are formed in parallel.
The development of products for protection against cyber threats and targeted attacks of increased complexity is just one of the areas of our work. We pay great attention to the study of malicious objects.

To effectively protect against a virus, you need to understand its anatomy. VirLab technologies allow you to penetrate the structure of malware, disassemble it into atoms.

T&T Security VirLab specialists have a set of various tools for manual threat analysis and an advanced tLab system.

We work with companies and government agencies to help them identify and prevent new types of threats. This allows you to quickly detect and respond to attacks of any type.

T&T Security VirLab employees were the first in the CIS to conduct a detailed analysis of the WannaCry malware and compiled detailed statistics on this threat. In 2017, a network worm infected more than a million computers in 200 countries around the world. The virus paralyzed the work of airports, banks, factories, government agencies. The total damage caused by malware exceeded $ 1 billion. A VirLab study on this topic was published on the Habr website. It was viewed by over 100 thousand users. In the "Research" section of our website, you can familiarize yourself with the most notorious cases of attacks, which were studied by the employees of "VirLab". These are the Rising Sun backdoor analysis from APT Lazarus, the AveMaria / Warzone RAT analysis, the Agent Tesla packaged sample, and others.