Dorothy2 is a framework created for suspicious binary analysis. It’s main strengths are a very flexible modular environment, and an interactive investigation framework with a particular care of the network analysis. Additionally, it is able to recognise new spawned processes by comparing them with a previously created baseline.
more here.........https://github.com/m4rco-/dorothy2
more here.........https://github.com/m4rco-/dorothy2