Cyber Investigation

The cyber investigation service performs an exhaustive search and in-depth analysis on topics related to cyber threats of interest to "CLIENTE". These investigations may include: threat actors identified by "CLIENTE" (victims, infrastructure, motivation, modus operandi); IOCs associated with an adversary/malware; analysis of a suspicious IP address (including ranges); analysis of a suspicious domain; analysis of a suspicious sample (by hash or filename). For deeper analysis, it may be treated as malware analysis: attack attribution based on incident response information (keywords, hashes, domains, etc.); suspicious activity such as analysis of phishing campaigns or malware campaigns identified by "CLIENTE"; identification of "CLIENTE"’s digital footprint (domains, IPs, URLs).