The Importance of Malware Triage, (Tue, Jun 27th)

This post was originally published on this site

When dealing with malware analysis, you like to get "fresh meat".  Just for hunting purposes or when investigating incidents in your organization, it’s essential to have a triage process to reduce the noise and focus on really interesting files. For example, if you detect a new sample of Agent Tesla, you don’t need to take time to investigate it deeply. Just extract IOCs to share with your colleagues. From a business point of view, you don’t have time to analyze all samples!

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.