mirror of https://github.com/MISP/MISP
Critical classification
parent
e5f77bfe0f
commit
0f21355801
|
@ -23,3 +23,8 @@ Attribution
|
|||
* Multiple malwares are investigated at the same time by different entities
|
||||
* They all contain the same highly specific mutex and can be connected and help to identify the attacker
|
||||
|
||||
Malware analysis and critical classification
|
||||
============================================
|
||||
|
||||
* A analyst is reversing a malware but doesn't know the level of risk with the associated (lack of context)
|
||||
* The analyst enters the indicators into MISP to check if some other events (with a proper context) are triggered
|
||||
|
|
Loading…
Reference in New Issue