Cisco Security HOWTO: Threat Hunting by Malware Behavior

In this installment of Cisco Security HOWTO, Karel Simek from Cisco Advanced Threat Solutions walks us through a detailed but brief threat hunting scenario where we start with looking for known suspicious behaviors in malware submissions to the Threat Grid malware analysis system and then follow through into endpoint visibility via AMP for Endpoints, before finishing up with a multi pronged investigation in Cisco Threat Response that reveals more suspicious activity and the subject of a potential future investigation. To learn more, visit

Duration: 18:38
Publisher: Cisco
You can watch this video also at the source.