DATASHEET

Trend Micro™

DEEP DISCOVERY™ ANALYZER

Enhanced protection against targeted attacks

Targeted attacks and advanced threats are customized to evade your conventional Key Benefits
security defenses and remain hidden, while stealing your sensitive data or encrypting
critical data until ransom demands are met. To detect targeted attacks and advanced
threats, analysts and security experts agree that organizations should utilize advanced
detection technology as part of an expanded strategy to address today’s evasive threats. Better Detection
Deep Discovery Analyzer extends the value of existing security investments from Trend • Superior detection versus generic
Micro and third parties (through a web services API) by providing custom sandboxing and virtual environments.
advanced analysis. It can also provide expanded sandboxing capabilities to other Trend • Superior evasion resistance.
Micro products. Suspicious objects can be sent to the Analyzer sandbox for advanced
analysis using multiple detection methods. If a threat is discovered, security solutions can
be updated automatically.
Tangible ROI
• Enhance existing investments through
KEY CAPABILITIES integration and sharing of threat.
intelligence and additional processing
Custom Sandbox Analysis uses virtual images that are tuned to precisely match your
system configurations, drivers, installed applications, and language versions. This capacity for high traffic environments.
approach improves the detection rate of advanced threats that are designed to evade • Remove time consuming manual
standard virtual images. The custom sandbox environment includes safe external analysis of suspicious files.
access to identify and analyze multi-stage downloads, URLs, command and control • Protect against expensive ransomware
(C&C), and more, as well as supporting manual or automated file and URL submission.
remediation.
Flexible Deployment Analyzer can be deployed as a standalone sandbox or alongside • Flexible deployment options for
a larger Deep Discovery deployment to add additional sandbox capacity. It is scalable
centralized or decentralized analysis.
to support up to 60 sandboxes in a single appliance, and multiple appliances can be
clustered for high availability or configured for a hot or cold backup.
Advanced Detection Methods such as static analysis, heuristic analysis, behavior
analysis, web reputation, and file reputation ensure threats are discovered quickly.
Analyzer also detects multi-stage malicious files, outbound connections, and repeated
C&C from suspicious files.
• 
Broad file analysis range examines a wide range of Windows executables,
Microsoft® Office, PDF, web content, and compressed file types using multiple
detection engines and sandboxing. Custom policies can be defined by file type.
• 
Document exploit detection discovers malware and exploits delivered in common
document formats by using specialized detection and sandboxing.
• 
URL analysis Performs sandbox analysis of URLs contained in emails or manually
submitted samples.
• 
Web services API and manual submission enables any product or malware analyst
to submit suspicious samples. Shares new indicators of compromise (IoC) detection
intelligence automatically with Trend Micro and third-party products.
• 
Support for Windows, Mac, and Android™ operating systems.
Detect ransomware detects script emulation, zero-day exploits, targeted and
password-protected malware commonly associated with ransomware. IT also uses
information on known threats to discover ransomware through pattern and reputation-
based analysis. The custom sandbox can detect mass file modifications, encryption
behavior, and modifications to backup and restore.

Page 1 of 2 • DATASHEET • DEEP DISCOVERY ANALYZER

 A KEY PART OF TREND MICRO CONNECTED THREAT DEFENSE
To adequately protect against the current threat landscape, you’ll need multi-layered protection platform
that delivers the full life cycle of threat defense. Trend Micro Connected Threat Defense is a new cyber
security model that can give organizations a better way to quickly protect, detect, and respond to new
threats that are targeting them, while simultaneously improving visibility and control across their network.
• 
Protect: Assess potential vulnerabilities and proactively protect endpoints, servers, and applications.
• 
Detect: Identify advanced malware, behavior, and communications invisible to standard defenses.
• 
Respond: Enable rapid response through shared threat intelligence and delivery of real-time security
updates to Trend Micro security layers and to/from third-party security using YARA and STIX.
• 
Visibility and Control: Gain centralized visibility across the network and systems; analyze and assess
the impact of threats.

DEEP DISCOVERY ANALYZER APPLIANCE SPECIFICATIONS

Deep Discovery Analyzer
Capacity 38,000 samples/day
alz, bat, cmd, cell, chm, csv, class, dll, doc, docx, egg, elf, exe, gul, hta, html, hwp,
Supported File Types hwpx, igy jar, js, jse, jtd, lnk, mht, mhtml, mov, odt, odp, ods, pdf, ppt, pptx, ps1, pub,
rtf, sh, slk, svg, swf, vbe, vbs, , wsf, xls, xlsx, xml, xht, xhtml, url
Supported Operating Systems Windows XP, Win7, Win8/8.1, Win 10, Windows Server 2003, 2008, 2012, 2016 Mac OS, Linux
Form Factor 2U rack-mount, 48.26 cm (19”)
Weight 31.5 kg (69.45 lbs)
Dimensions Width 48.2 cm (18.98”) x Depth 75.58 cm (29.75”) x Height 8.73 cm (3.44”)
Management Ports 10/100/1000 base-T RJ45 port x 1 – optional 10G SR SFP+
Data Ports 10/100/1000 base-T RJ45 x 3 – optional 10G SR SFP+
AC Input Voltage 100 to 240 VAC
AC Input Current 10A to 5A
Hard Drives 2 x 4 TB 3.5 inch SATA
RAID Configuration RAID 1
Power Supply 750W redundant
Power Consumption (Max.) 847W (max.)
©2021 by Trend Micro Incorporated. All rights reserved. Trend
Heat 2891 BTU/hr. (max.) Micro, and the Trend Micro t-ball logo, OfficeScan and Trend
Micro Control Manager are trademarks or registered trademarks
Frequency 50/60 HZ of Trend Micro Incorporated. All other company and/or product
names may be trademarks or registered trademarks of their
Operating Temp. 50-95 °F (10 to 35 °C) owners. Information contained in this document is subject to
change without notice.
Hardware Warranty 3 years
For details about what personal information we collect and why,
please see our Privacy Notice on our website at: https://www.
trendmicro.com/privacy

OTHER DEEP DISCOVERY PRODUCTS [DS01_Deep_Discovery_Analyzer_Datasheet_210414US]

Deep Discovery Analyzer is part of the Trend Micro™ Deep Discovery™ platform, delivering advanced
threat protection where it matters most to your organization—network, email, endpoint, or existing
security solutions.
• 
Trend Micro™ Deep Discovery™ Inspector is a virtual or hardware appliance which enables
360-degree detection of network-based targeted attacks and advanced threats. By using specialized
detection engines and custom sandbox analysis, Inspector identifies advanced and unknown
malware, ransomware, zero- day exploits, C&C communications, lateral movement, and evasive
attacker activities that are invisible to standard security defenses.
• 
Trend Micro™ Deep Discovery™ Email Inspector provides advanced malware detection, including
sandboxing for email. Email Inspector can be configured to block delivery of advanced malware
through email before it is delivered.

Page 2 of 2 • DATASHEET • DEEP DISCOVERY ANALYZER