Landscape Report by OPSWAT Reveals Malware Complexity

News Desk - 07/08/2025

OPSWAT, has announced the release of its first-ever Threat Landscape Report. The report offers in-depth insights based on more than 890,000 sandbox scans conducted over the past year.

According to OPSWAT, the findings reveal a significant rise in the complexity of cyberthreats. Notably, the report shows a 127% increase in malware complexity. It also highlights that 1 in 14 files originally flagged as ‘safe’ by legacy systems were later proven malicious.

The report stresses the need for modern, multi-layered threat detection solutions. OPSWAT’s sandbox technology uncovered several evasive threats using obfuscated loaders like NetReactor. These threats were designed to bypass traditional security tools.

OPSWAT reported that its platform reclassified 7.3% of files as malicious before any alerts appeared in open-source intelligence feeds. On average, these threats were detected 24 hours earlier than public sources. The system confirmed executions rather than relying on speculative flags.

The report also revealed the ability to correlate threats at a campaign level. OPSWAT’s scans identified shared tactics, command-and-control infrastructure, and patterns across multiple campaigns. This approach provides organizations with actionable, context-rich intelligence.

OPSWAT’s updated behavioral and machine learning pipeline achieved 99.97% detection accuracy. The system identified complex threats such as:

Clipboard hijacking via ClickFix
Steganography-based malware loaders
C2 channels hidden in Google services
.NET Bitmap loaders delivering Snake Keylogger

Jan Miller, Chief Technology Officer of Threat Analysis at OPSWAT, said, “Our strength lies in precision, behavioral depth, and early visibility into emerging attacks.”

As malware becomes more modular and evasive, OPSWAT emphasized the importance of rapid behavioral detection pipelines and shared intelligence. The company urged cybersecurity leaders to reassess outdated technologies to remain ahead of threats.

This report serves as a call to action for organizations defending critical infrastructure and enterprise networks to modernize their threat detection strategies.