
Jun 21, 2023
1.2.0
ThreatQ versions >= 4.41.0
Intel471 Indicators - Malware Intelligence
Overview
Returns list of Indicators matching filter criteria.
Note : Malware Intelligence is a different product from Intel 471 to adversary intelligence.
Benefits of Malware Intelligence
- Intel 471’s Malware Intelligence was developed for seamless and automated ingestion into security tools and infrastructure, this includes Threat Intelligence Platforms (TIPs) and SIEMs (e.g., Splunk).
- Security teams are equipped with early and near real-time visibility into the latest cybercriminal malware campaigns and latest malware advertised and released by cybercriminals in the underground.
- This enables security teams to confidently block and detect malware faster, thereby reducing incidents.
- Organizations are able to implement a proactive driven security approach by using Intelligence on malware family, version, malware intelligence reports, botnet configuration (including parsed web injects), linked indicators, IDS signatures, YARA rules and MITRE ATT&CK framework mapping.