Official site is:

http://bsa.isoftware.nl

And the tool can be downloaded from:

http://bsa.isoftware.nl/bsa.rar

Buster Sandbox Analyzer is a tool that has been designed to analyze the behaviour of processes and the changes made to system and then evaluate if they are malware suspicious.

Released Buster Sandbox Analyzer 1.33.

Changes:

+ Added a feature to run BSA from command line in automatic mode
+ Added Exeinfo support
+ Added extra information of dropped files
+ Updated BSA.DAT
+ Updated LOG_API
+ Fixed a bug

Hey VirusBuster,

Thanks for the contribution, I updated the page dedicated to this on the CRCETL

http://www.woodmann.com/collaborative/tools/Buster_Sandbox_Analyzer

Thanks for the information update, silkut!

Released Buster Sandbox Analyzer 1.34.

Changes:

+ Added a feature to copy/move processed files in automatic mode
+ Added a feature to export RegHive to .REG format
+ Updated LOG_API
+ Removed HideDriver
+ Fixed a bug

Released Buster Sandbox Analyzer version 1.35.

Changes:

+ Added HideDriver again
+ Added LOG_API version for 64 bit systems
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.36.

Changes:

+ Added support for ssdeep
+ Improved the support for DLL files
+ Report informations can be selected individually
+ Updated BSA.DAT
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.37.

Changes:

* Improved hiding feature
* Updated BSA.DAT
* Removed evaluation risk feature
* Fixed several bugs

Part of the improved hiding feature is the possibility of naming LOG_API.DLL with the file name you prefer.

Evaluation risk was removed from malware analysis report because it was too misleading. Probably I will reintroduce the feature in the near but having other format.

I forgot to comment a new feature in version 1.37.

* Added "Version Information" feature. This feature will include a header in reports with the version and date of creation of reports.

Article updated on the CRCETL.

Released Buster Sandbox Analyzer 1.38.

Changes:

+ Added risk evaluation module
+ Added several improvements
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.39.

Changes:

+ Fixed several bugs.

Released Buster Sandbox Analyzer 1.40.

Changes:

+ Usability improvement in File Hash, File Scanner, File Signature and automatic analysis features: last used folder will be remembered
+ Usability improvement in File Hash, File Scanner and File Signature features: added drag and drop support
+ Added Exeinfo support to File Signature feature
+ Improved File Hash feature: all hashes can be checked at VirusTotal at once, VirusTotal reports can be saved to disk

Released Buster Sandbox Analyzer 1.42.

Changes:

+ Added a feature to capture screen in video (VLC installation required)
+ Added a feature to report direct disk writing attempts (Sandboxie 3.59.01 or newer version required)
+ Fixed a bug

Released Buster Sandbox Analyzer 1.44.

Changes:

+Changed the feature to do not show UDP packets. Now the feature will ignore UDP packets from PCAP captures and reports
+ Added a feature to minimize BSA when the feature to do video capture is enabled
+ Added a feature to compress to ZIP sandbox folder contents when “Keep Sandbox Files” is enabled
+ Added information related to date of submission in VirusTotal reports
+ Added several improvements
+ Updated LOG_API

Released Buster Sandbox Analyzer 1.45.

Changes:

+ Added a feature to produce reports in PDF format
+ Added support for new malware behaviours: get volume information, alternate data stream creation
+ Updated LOG_API

Released Buster Sandbox Analyzer 1.46.

Changes:

+ Added a feature to include information from reports into a SQL database
+ Added a custom manager for BSA´s SQL Database
+ Added a feature to load and save settings from file on demand
+ Added a feature to set a number of retries if connection to VirusTotal fails
+ Added a feature to launch automatically Explorer.exe in automatic mode
+ Added a feature to skip already processed files in automatic mode
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.47.

Changes:

+ Added a feature to run BSA in automatic mode monitorizing a folder for new files to analyze.
+ Added a feature to avoid processing files from a whitelist.
+ Improved analysis cancel event.
+ Fixed several bugs.

Released Buster Sandbox Analyzer 1.48.

Changes:

+ Added PDF statistics feature
+ Added support for a new malware behaviour: get computer name
+ Updated LOG_API
+ Fixed several bugs

i wonder if i would run FlexLM trial version with this i could find what they are hideing that make the trial protection very complex and just clean it.

Released Buster Sandbox Analyzer 1.49.

Changes:

+ Added support for XML reports
+ Added support for TLS hooks detection
+ Improved PDF Statistics
+ Updated LOG_API verbose versions to include FindFirst/NextFile support
+ Updated support for new VirusTotal web service
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.50.

Changes:

+ Added multi-language support
+ Updated LOG_API
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.51.

Changes:

+ Added a custom driver to hide Sandboxie´s processes
+ Removed Hide Driver from package
+ Included new malware behaviour
+ Added File Renamer feature to utilities section
+ Updated LOG_API

Released Buster Sandbox Analyzer 1.52.

Changes:

+ Added support for HTML reports
+ Added a feature to remove sandbox folder contents automatically in manual mode
+ Included new malware behaviour
+ Updated LOG_API
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.53.

Changes:

+ Added a new entry section to BSA.DAT: [Process_Code_Injection]
+ Added a new feature to dump executable processes in automatic mode
+ Added a feature that allows the user to select what behaviours must appear in the analysis report
+ Updated “Risk Evaluation Ratings”
+ Included new malware behaviour
+ Updated LOG_API

Released Buster Sandbox Analyzer 1.54.

Changes:

+ Added a new entry section to BSA.DAT: [File_Strings]
+ Added a feature to search for defined strings inside analyzed file
+ Improved “Dump Executable Processes” feature
+ Included new malware behaviour
+ Updated LOG_API
+ Added portuguese (Brazil) language translation (thanks to Paulo Guzman)

Released Buster Sandbox Analyzer 1.55.

Changes:

+ Added Adobe Malware Classifier information
+ Included new malware behaviour at “Risk Evaluation Ratings”

Released Buster Sandbox Analyzer 1.56.

Changes:

+ Added the ability to run multiple analyses at the same time
+ Added new malware behaviours
+ Updated LOG_API
+ Included new malware behaviour at “Risk Evaluation Ratings”
+ Added russian language translation (thanks to gjf)

Released Buster Sandbox Analyzer 1.57.

Changes:

+ Added a feature to extract used APIs from dumped files
+ Added a feature to extract strings from dumped files
+ Added new malware behaviour
+ Fixed a bug

Released Buster Sandbox Analyzer 1.58.

Changes:

+ Added new malware behaviours
+ Added a feature to analyze automatically a file from shell menu
+ Added a feature to generate additional information from analyzed executable files
+ Added the option of deleting analyzed file at “Manage Processed file” feature
+ Included new malware behaviour at “Risk Evaluation Ratings”
+ Included Signsrch tool by Luigi Auriemma
+ Updated LOG_API
+ Updated Exeinfo to version 0.0.3.0
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.59.

Changes:

+ Updated LOG_API
+ Updated PEiD's USERDB.TXT
+ Fixed several bugs

Note: This version contains important bugfixes.

Released Buster Sandbox Analyzer 1.60.

Changes:

+ Added a feature to analyze URLs
+ Added an option at “SQL > Report Manager” feature to import records from an external database
+ Added support for JSON reports
+ Added a feature to avoid screensaver activation while an analysis is being performed
+ Updated LOG_API
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.61.

Changes:

+ Added a feature at “Risk Evaluation Ratings” to show hints related to malware behaviours
+ Modified the layout to show separately the file being processed from the number of files left to be processed
+ Added new malware behaviours
+ Included new malware behaviour at “Risk Evaluation Ratings”
+ Updated LOG_API
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.62.

Changes:

+ Added a feature to patch LOG_API automatically
+ Updated LOG_API
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.63.

Changes:

+ Added “Aggressive Window Closer” feature
+ Added a feature to restore display settings if changed while analysis
+ Added new malware behaviours
+ Improved “Additional Information” feature
+ Improved multiple malware analyses feature
+ Improved “Automate Setups” feature
+ Improved the speed processing certain files
+ Included new malware behaviours at “Risk Evaluation Ratings”
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.64.

Changes:

+ Added new malware behaviours
+ Improved “Hide Driver “ manager
+ Improved anti anti-Sandboxie capabilities
+ Included new malware behaviours at “Risk Evaluation Ratings”
+ Updated LOG_API
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.66

Changes:

+ Added new malware behaviours
+ Included new malware behaviours at “Risk Evaluation Ratings”
+ Improved “Dump Executable Processes” feature
+ Updated BSA.DAT
+ Updated LOG_API
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.67.

Changes:

+ Improved “[File_Strings]” section at BSA.DAT
+ Added “[Custom_LogAPI_Entries”] section to BSA.DAT
+ Added support for wildcards in RegistryExclude.TXT
+ Added support for Hexacorn´s HexDive tool
+ Added new malware behaviours
+ Included new malware behaviours at “Risk Evaluation Ratings”
+ Added LOG_API support for 64-bit applications

Released Buster Sandbox Analyzer 1.68.

Changes:

+ Added support to analyze URLs from command line
+ Added support for FakeNet
+ Updated ssdeep tool to version 2.8
+ Updated BSA.DAT
+ Updated LOG_API
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.69.

Changes:

+ Added a feature to generate statistics
+ Updated “Report Manager” feature
+ Updated LOG_API
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.70.

Changes:

+ Added new malware behaviours
+ Improved “Additional Information” feature
+ Included new malware behaviours at “Risk Evaluation Ratings”
+ Added deutsch language translation (thanks to AV-Comparatives)
+ Updated BSA.DAT
+ Updated LOG_API
+ Updated HexDive
+ Updated SIGNSRCH.SIG

Released Buster Sandbox Analyzer 1.71.

Changes:

+ Added new malware behaviours
+ Added BSA_USER.DAT feature
+ Improved “Dump Executable Processes” feature
+ Included new malware behaviours at “Risk Evaluation Ratings”
+ Updated BSA.DAT
+ Updated LOG_API
+ Updated Exeinfo
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.72.

Changes:

+ Added wildcard support for FileExclude.TXT and APIExclude.TXT
+ Updated Exeinfo
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.73.

Changes:

+ Added “Launch Internet Explorer” feature
+ Added new malware behaviours
+ Improved “Report Manager” feature
+ Updated BSA.DAT
+ Updated LOG_API
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.74.

Changes:

+ Added functionalities to locate bugs
+ Added analysis duration information to reports
+ Removed the option to include version information
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.75.

Changes:

+ Updated HexDive to version 0.4
+ Removed functionalities to locate bugs
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.76.

Changes:

+ Added a feature to check for API hooks
+ Added “Launch Custom Applications” feature
+ Added new malware behaviours
+ Included new malware behaviours at “Risk Evaluation Ratings”
+ Removed “Launch Internet Explorer” and “Launch Windows Explorer” features
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.77.

Changes:

+ Fixed several bugs

Released Buster Sandbox Analyzer 1.78.

Changes:

+ Added a feature to specify report folder in automatic mode
+ Improved “URL Analyzer” feature
+ Improved command line feature
+ Removed “Save Settings on Exit” feature
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.79.

Changes:

+ Added “Edit BSA_USER.DAT” feature
+ Improved typical error problem checkings
+ Udated BSA.DAT
+ Updated LOG_API
+ Updated malware behaviors
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.80.

Changes:

+ Included new malware behaviours at “Risk Evaluation Ratings”
+ Updated “URL Analyzer” feature
+ Udated BSA.DAT
+ Updated LOG_API
+ Updated malware behaviors
+ Updated HexDive
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.81.

Changes:

+ Updated LOG_API
+ Updated “URL Analyzer” feature
+ Updated “Check for Updates” feature
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.82.

Changes:

+ Added a feature to analyze Android applications
+ Added new malware behaviours
+ Included new malware behaviours at “Risk Evaluation Ratings”
+ Improved “Run Custom Command On Finish” feature
+ Updated LOG_API
+ Updated HexDive to version 0.6
+ Updated ExeInfo to version 0.0.3.2
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.83.

Changes:

+ Added new malware behaviours
+ Added the possibility of including comments in BSA.DAT
+ Included new malware behaviours at “Risk Evaluation Ratings”
+ Optimized file string search
+ Updated BSA.DAT
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.84.

Changes:

+ Added “[Custom_File_Entries]” section to BSA.DAT
+ Added a feature to extract files from PCap files in automatic mode
+ Added new malware behaviors
+ Included new malware behaviours at “Risk Evaluation Ratings”
+ GUI has been redesigned
+ Updated BSA.DAT
+ Updated LOG_API
+ Fixed several bugs

Released Buster Sandbox Analyzed 1.85.

Changes:

+Added a feature to run silently setups if possible in automatic mode
+Added a feature to view malware analysis on finish in manual mode
+Added a feature to save connection information to CSV file in “Pcap Explorer” feature
+Added a feature to refresh BSA window
+Removed several program dependencies (REG.EXE, STRINGS.EXE, …)
+DAT files move to “DATA” folder
+Improved “File Strings” feature
+Updated BSA.DAT
+Updated LOG_API
+Fixed several bugs

Released Buster Sandbox Analyzer 1.86.

Changes:

+ LOG_API completely rewritten and improved
+ Added “Use Deep Dump Method” feature
+ Added “Send a Return Every 10 seconds” feature
+ Added a feature to show all logged APIs
+ Added a feature to save connection information to HTML file in “Pcap Explorer” feature
+ Added new malware behaviors
+ Included new malware behaviours at “Risk Evaluation Ratings”
+ Updated “Process Explorer” feature
+ Updated BSA.DAT
+ Updated PeID´s USERDB.TXT
+ Updated Exeinfo´s Ext_Detector.DLL
+ Fixed several bugs

Released Buster Sandbox Analyzer 1.87.

Changes:

+ Added new malware behaviors
+ Included new malware behaviours at “Risk Evaluation Ratings”
+ Improved “Include VirusTotal Malware Information of Dropped Files” feature
+ Updated XML and Json format schemas
+ Updated LOG_API
+ Updated BSA.DAT
+ Fixed several bugs

After a few tests with Sandboxie version 4 and due the major changes to underlying architecture I have considered Sandboxie is not suitable for malware analysis anymore, therefore Buster Sandbox Analyzer development will be discontinued.

Released Buster Sandbox Analyzer 1.88 - Final Release

Changes:

+ Added support for MAEC 3.0 reports
+ Fixed VirusTotal report information