What is the primary reason to use a sandbox to analyze unknown suspicious files?
A. to determine exactly what a file does before it is labeled malicious or benign
B. to block any suspected malware in real time before it can inflect the end user
C. to provide evidence for post-incident forensics reports
D. to run it in a production environment to see its effects
