2025 kept all of us busy for sure. But it also brought a ton of breakthrough studies, insights, and improvements. Let\u2019s glance back at the year and see what we accomplished together \u2014 through numbers, stories, and proud moments. <\/p>\n\n\n\n
Milestones We Achieved Together in 2025 <\/h2>\n\n\n\n![\"\"](\"\/cybersecurity-blog\/wp-content\/uploads\/2025\/12\/info-of-the-year-1024x894.png\")
Key results of 2025 by ANY.RUN<\/em> <\/figcaption><\/figure><\/div>\n\n\nWe bet it\u2019s safe to say that no analyst was idle this year, and the numbers support this statement: the total number of analyses launched in ANY.RUN\u2019s Interactive Sandbox<\/a> across 195(!) countries exceeded 5.7 millions, with 1.1 million threats uncovered in the process. <\/p>\n\n\n\nOur most active users this year were based in the US, Germany, UK, and India. Many of them represent big enterprises. In fact, 74 of Fortune 100 companies used our sandbox this year. <\/p>\n\n\n\n
The community overall kept growing: out of 500,000+ users, 81k joined us this year, bringing new insights with them. <\/p>\n\n\n\n
Altogether, ANY.RUN\u2019s users have spent 400,000+ hours in our sandbox \u2014 that\u2019s more than 45 years of research! Just imagine how much longer it would take without a solution built for fast and efficient analysis. \ud83d\ude0e <\/p>\n\n\n\n
When it comes to what exactly our community analyzed most, there are no surprises: in 2025, phishing continued to reign over the threat landscape. In particular, the most active threat was Tycoon2FA<\/strong><\/a>. <\/p>\n\n\n\nThe top suspects among file types were: executables, ZIP archives, PDFs, and emails (EML and MSG)<\/strong>. A clear proof of how widespread both file- and email-based malware is. <\/p>\n\n\n\nBut no threat should scare an analyst equipped with strong security solutions. Here are some of the tangible results reported by ANY.RUN\u2019s users in 2025: <\/p>\n\n\n\n
\n \n\n \n \n Measurable impact with ANY.RUN, 2025\u00a0 <\/th>\n <\/tr>\n \n \n Average MTTD: 15 seconds\u00a0 <\/td>\n <\/tr>\n \n \n MTTR reduced\u00a0by:\u00a021\u00a0minutes\u00a0 <\/td>\n <\/tr>\n \n \n Investigation speed improved: in\u00a095% of SOCs\u00a0 <\/td>\n <\/tr>\n <\/table>\n<\/div>
We bet it\u2019s safe to say that no analyst was idle this year, and the numbers support this statement: the total number of analyses launched in ANY.RUN\u2019s Interactive Sandbox<\/a> across 195(!) countries exceeded 5.7 millions, with 1.1 million threats uncovered in the process. <\/p>\n\n\n\n Our most active users this year were based in the US, Germany, UK, and India. Many of them represent big enterprises. In fact, 74 of Fortune 100 companies used our sandbox this year. <\/p>\n\n\n\n The community overall kept growing: out of 500,000+ users, 81k joined us this year, bringing new insights with them. <\/p>\n\n\n\n Altogether, ANY.RUN\u2019s users have spent 400,000+ hours in our sandbox \u2014 that\u2019s more than 45 years of research! Just imagine how much longer it would take without a solution built for fast and efficient analysis. \ud83d\ude0e <\/p>\n\n\n\n When it comes to what exactly our community analyzed most, there are no surprises: in 2025, phishing continued to reign over the threat landscape. In particular, the most active threat was Tycoon2FA<\/strong><\/a>. <\/p>\n\n\n\n The top suspects among file types were: executables, ZIP archives, PDFs, and emails (EML and MSG)<\/strong>. A clear proof of how widespread both file- and email-based malware is. <\/p>\n\n\n\n But no threat should scare an analyst equipped with strong security solutions. Here are some of the tangible results reported by ANY.RUN\u2019s users in 2025: <\/p>\n\n\n\n\n\n
\n \n Measurable impact with ANY.RUN, 2025\u00a0 <\/th>\n <\/tr>\n \n \n Average MTTD: 15 seconds\u00a0 <\/td>\n <\/tr>\n \n \n MTTR reduced\u00a0by:\u00a021\u00a0minutes\u00a0 <\/td>\n <\/tr>\n \n \n Investigation speed improved: in\u00a095% of SOCs\u00a0 <\/td>\n <\/tr>\n <\/table>\n<\/div>