The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is expanding its Malware Next-Generation Analysis platform to offer automated malware analysis support to all federal, state, and local government agencies. This initiative aims to enhance cybersecurity efforts by enabling agencies to detect and prevent malicious software effectively. Agencies partnering with CISA can submit malware samples for review, benefiting from automated scans and multilevel containment capabilities provided by the platform. CISA emphasizes the importance of efficient malware analysis in detecting adversary access to persistence within organizations.
The announcement, made on Wednesday, highlights the broader availability of CISA’s Malware Next-Generation Analysis platform, which conducts automatic scans and analysis of submitted samples. CISA’s Executive Assistant Director for Cybersecurity, Eric Goldstein, emphasizes the platform’s role in enabling cybersecurity threat hunting analysts to better analyze, correlate, enrich data, and share cyber threat insights with partners. The platform’s capabilities have already facilitated the identification of approximately 200 suspicious or malicious files and URLs from submitted samples.
CISA reports that nearly 400 registered users have submitted over 1,600 samples for review since the platform’s initial availability to federal and military agencies in November. While anyone can submit malware samples to the platform, only registered users can access the full system and receive analysis results. Registration to the updated platform requires a login.gov account. The automated malware analysis provided by CISA’s platform combines static and dynamic analysis within a secure U.S. government system, delivering results in PDF and STIX 2.1 data formats.
