Malware analysis sandboxes are used to run malicious samples in a controlled environment. By inspecting the sample behaviour, the sandbox can decide whether the sample is malicious or not. Attackers commonly try to detect and avoid malware analysis sandboxes.