CrowdStrike's Falcon Sandbox is a part of the CrowdStrike Falcon platform and is designed to automatically detect and analyze sophisticated cyber threats, particularly those using zero-day exploits. The tool was used to examine a malicious PDF that contained zero-day exploits targeting Adobe Acrobat Reader and older Windows systems. It identified the sample as malicious with a high threat score and detected various exploitation techniques, such as privilege escalation, that the PDF used to bypass security measures. The Sandbox also extracted proof of concept malware for further analysis, showcasing its capability to provide detailed insights into advanced attacks. CrowdStrike continuously updates Falcon Sandbox to enhance its detection capabilities, offering users a robust solution for identifying and analyzing complex cyber threats.