Zero wine just runs the malware using WINE in a safe virtual sandbox -qemu- (in an isolated environment) collecting information about the APIs called by the program. Zero wine is distributed as one QEMU virtual machine image with a Debian operating system installed. The image contains software to upload and analyze malware and to generate reports based on the information gathered (this software is stored in /home/malware/zerowine).
-
- zerowine-img1
- http://sourceforge.net/projects/zerowine
- http://www.malwarechallenge.info/challenge.html
