Registration required to access results of analysis
While the service has been made publicly available, CISA is enforcing account registration in order to be able to access the analysis. Any user (and organizations) can submit a threat sample for analysis, but will need to register to see the analytical results from submissions.
“Please note, the Malware Next-Gen Analysis platform is a U.S. government computer and information system,” the agency wrote in an explainer for the tool. “To receive analysis of any malware samples you submit to this system, you will need to create a user account and consent to monitoring of your activities. Access to this system is restricted to authorized users only and subject to rules of behavior.”
Users who wish to submit malware samples without registering will have to use the “Anonymous submission” option on the login page. Although available behind a “sign-up” wall, the public availability of the tool is being received positively by the cybersecurity community.
“This CISA malware analysis tool will help democratize cybersecurity,” said Pareekh Jain, chief analyst at Pareekh Consulting. “While large organizations have access to sophisticated resources, small organizations and individuals often suffer due to a lack of access and an inability to implement cybersecurity effectively. With this tool, anyone can access sophisticated analyses of any malware content in files or URLs.