PyREBox is a versatile instrumentation framework based on QEMU. It allows us to run a whole operating system in a virtual environment (emulator) and inspect and modify its memory and registers at run-time. The toolset also includes IDA Python scripts that help with visualization of the information extracted from the execution of a program. All these tools are configurable via JSON configuration files, and serve to assist automation of sample execution and analysis. The code coverage module in Malware monitor traces execution of emulator translation blocks. The second file provides a coarse-grained summary of the executed memory regions.”]
Source: https://blog.talosintelligence.com/2018/04/malware-monitor-pyrebox-for-analysis.html