What is Sandbox?

An isolated environment where untrusted code can run without affecting the host.

Malware analysts detonate suspicious files in sandboxes to observe behavior safely. Sandboxing is also a defensive control in browsers and operating systems to contain exploits.

Advanced malware uses anti-sandbox checks to avoid detonation.