Cisco Secure Malware Analytics
Cisco Secure Malware Analytics (formerly known as Threat Grid) combines advanced sandboxing with threat intelligence into one unified solution to protect organizations from malware. With a robust, context-rich malware knowledgebase, users can understand what malware is doing, or attempting to do, how large a threat it poses, and how to defend against it. This integration allows for files to automatically be sent from ThreatConnect to Threat Grid for analysis. Once done, the integration automatically returns the analysis to ThreatConnect, and associates it to the indicators or groups (incidents, emails, documents, etc.)
The following actions are available:
- Get Report – Retrieve analysis based on an artifact’s hash ID.
- Submit File for Analysis – Upload a sample to Cisco Secure Malware Analytics. for analysis.
This app can be found in the ThreatConnect App Catalog under the name: Cisco Secure Malware Analytics