Critical classification

Use-cases.md

@@ -23,3 +23,8 @@ Attribution
 * Multiple malwares are investigated at the same time by different entities
 * They all contain the same highly specific mutex and can be connected and help to identify the attacker
 
+Malware analysis and critical classification
+============================================
+
+* A analyst is reversing a malware but doesn't know the level of risk with the associated (lack of context)
+* The analyst enters the indicators into MISP to check if some other events (with a proper context) are triggered