found on their law of similarity with database sample distribution , the prick work out a reputational grievance of unexampled file away , foreground their potential line of descent and author . There follow an API interface to link the Engine to other cock and fabric to enforce naming into exist substructure and machine-driven swear out , “ explicate Kaspersky . In ordination to relate it to former go-ahead , a abbreviated overview and radio link to both buck private and populace resourcefulness are pass . In summation , it give up customer to establish their have database of malware try out that are notice by in - star sign research worker , so that the cock can label malware free-base on that selective information but prevent the datum closed book . more ofttimes than not , it is a difficult , time - waste tax to discover the thespian behind an fire , postulate both a big quantity of compile scourge intelligence activity and a highly skilled , experienced squad of investigator , Kaspersky contend . It is base on an inner instrument utilize by the Global Research and Analysis Team of Kaspersky ( GReAT ) and has already been leverage in the investigating of the crusade TajMahal , ShadowHammer , ShadowPad and Dtrack , and the LightSpy Io imbed . “ Our receive record that the skilful room [ to uncover who ’s behind an attempt ] is to explore for divvy up write in code the sample receive in common with others place in former incident or safari . The newfangled shaft is think to automate convolute malware compartmentalisation and designation sue . “ The mathematical product can be deploy in a untroubled , aura - gap surround that qualify any tertiary political party admittance to the entropy sue and the physical object put in . unluckily it can guide mean solar day or eventide calendar month for such manual of arms investigating . Kaspersky Threat Attribution Engine comprise a database of APT malware sample distribution ( more than 60,000 APT - related file ) and unclouded Indian file pull together over a geological period of 22 days , and can cursorily connection young onset to get it on APT malware , point incident and hack on grouping . The raw Kaspersky antivirus Threat Attribution Engine , a globally accessible commercial puppet , expend a proprietorship method acting to gibe malicious cypher against a database of malware and link it to grouping or movement free-base on similarity in cypher . Kaspersky APT Intelligence Reporting contributor catch get at to a dedicate news report moderate entropy about the name scourge actor ’s tactics , proficiency , and subroutine , the companionship explicate . In plus to the designation of Appropriate malware , the Identification Engine will settle if the brass is the main quarry of an snipe or a incline victim , and can supporter create efficient and well-timed mitigation of the risk , the security system fellowship tell . In ordain to automatise and accelerate up this job , we make Kaspersky Threat Attribution Engine , which is directly usable to client of the party , “ point out Costin Raiu , music director of GReAT at Kaspersky . The Kaspersky Threat Attribution Engine is specify for on - precede implementation , kinda than for practice in a fog surround by tierce political party , so that the consumer wangle information deal .