Hi guys,
i know malwares can be categorized below same families. also same family malwares (dynamic analysis) have similar behaviour (pattern).
i have cuckoo sandbox and reports in malheur, json and maec formats.
my question is: how can i use report (lets say malheur) of one malware, to use it for detecting all other malwares from same family?
json in cuckoo got vt hashtag( virustotal) but i dont want to use that, i want use a method that can find similarity between malwares of same family.
any kind of help, such as links for guides, books or any idea would be very appreciated.
thank you
i know malwares can be categorized below same families. also same family malwares (dynamic analysis) have similar behaviour (pattern).
i have cuckoo sandbox and reports in malheur, json and maec formats.
my question is: how can i use report (lets say malheur) of one malware, to use it for detecting all other malwares from same family?
json in cuckoo got vt hashtag( virustotal) but i dont want to use that, i want use a method that can find similarity between malwares of same family.
any kind of help, such as links for guides, books or any idea would be very appreciated.
thank you
