Weaponizing Malware Code Sharing with Cythereal MAGIC

Introducing Cythereal MAGIC

Cythereal MAGIC turns code shared between malware into threat intelligence and Yara rules

How does MAGIC work?

Malware campaigns found in a quarantine of 2,600+ malware
Procedures shared in a campaign and their attributes
Yara rule with bytecode regular expression generated by MAGIC

Performance

Case Study

Accessing MAGIC

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store