Skip to main content

Cyware Fusion and Threat Response

Malware

Malware is a malicious piece of software or code that is designed to infect, explore, or virtually conduct any defined behavior that is harmful to an organization. Generally, malware is delivered over the network or using infected hardware. Malware is a common term used for malicious software such as viruses, worms, Trojans, root kits, Remote Administration Tools (RATs), botnets, spyware, and so on. Although malware families vary in their type and capabilities, they are created by an attacker to perform some of the following common tasks:

  • Provide remote access for an attacker to exploit an infected machine.

  • Investigate the infected computer's local network.

  • Steal sensitive data.

  • Send spam from the infected machines to other targets.

Respondprovides comprehensive malware management functionality that helps in defending against malware threats targeting your users, network, or business. You can also manage malware protection toolkits and other removable media that contain up-to-date tools for identifying malware activities and performing other analyses and responses for an incident investigation and eradication phase, respectively. Early commitment helps you stop the spread of malware in your organization’s network.

To view the malware, go to Menu > Malware. You can perform the following activities to manage malware:

  • Search and filter malware.

  • Reorder the malware based on the ascending or descending order of the malware titles.

  • View the malware using the following view types:

    • List

    • Type

    • Platform

  • Sort the malware based on the following criteria:

    • Relevance

    • Last Updates

  • View activity logs for the malware.

  • Export the malware.

  • Refresh the malware list to view the latest data. To refresh the malware list, on the top-right corner, click More > Refresh.

  • View the malware list in full-screen mode. To view the malware list in full-screen mode, on the top-right corner, click More > Full Screen.

  • View details of malware. To view details of malware retrieved from Intel Exchange, hover over the malware and click View Details. For more information, see Connect the Dots.

    Note

    This feature is available from Respond v3.4.2 onwards.

For more information on managing the malware listing page, see Manage Module Listings