Threat Model-Based Response (TMBR)
Cyberthreats are always evolving. Defenders need an automated or semiautomated framework to build and maintain a knowledge base for keeping up with novel malware. TMBR augments human analysis with a machine learning-based approach to malware triage and analysis that continually improves threat detection and response. TMBR analyzes samples of malware and provides operators with critical information on similar cyberattacks, including behavior profiles, file information, and mitigation techniques. With TMBR, cyber analysts can identify potential threat actors and take appropriate actions.