There are bugs in Static,Dynamic Analysis


If a malicious application has been revealed through dynamic or static analysis, the final result will be that there is no threat.

For example :
1-Advanced File Analysis System | Valkyrie

2-Advanced File Analysis System | Valkyrie

It’ s complicated, multifactored process.

The static and dynamic analysis shows evidence of potential malicious activity. For example “Reads memory of another process” might be a malicious behavior, or not, depending on the intent. We cannot always decide a malicious activity based on one input.

To identify a file as “malware”, we need to have enough evidences. As Morphiusz said, there is a complex method to detect the final verdict.