Malware Behavior Catalog v3.1 Expressed in STIX 2.1

The Malware Behavior Catalog has been expressed in STIX 2.1 JSON using a malware behavior extension based on the STIX 2.1 Committee Specification 03 (CS03).

Malware Behavior Catalog

The Malware Behavior Catalog (MBC) is a catalog of malware objectives and behaviors, created to support malware analysis-oriented use cases, such as labeling, similarity analysis, and standardized reporting. Please see the FAQ page for answers to common questions.

STIX

Structured Threat Information Expression (STIX) is a language and serialization format used to exchange cyber threat intelligence (CTI). STIX enables organizations to share CTI with one another, including malware analysis information, in a consistent and machine-readable manner.

MBC and STIX

Details on how MBC data is expressed in STIX 2.1 can be found in the STIX 2.1 Malware Behavior Extension document.