Cythereal

Cythereal is a cybersecurity company that provides an AI-powered security automation platform called MAGIC (Malware Analysis and Guided Intelligence for Campaigns), designed to assist security administrators in investigating and responding to malware-based attacks. The platform automates the investigation of failed cyberattacks by analyzing malware submitted from an organization's existing security tools. It uses a concept called "Malware Genome" to identify core code characteristics that persist across malware variants, even when authors apply code transformations such as those used by polymorphic malware. By detecting shared code between malware samples, MAGIC connects related attacks to the same threat actor campaigns and tracks their activity over time. MAGIC automatically generates custom Indicators of Compromise (IoCs) and YARA rules derived from shared malware code, which are then pushed back to the enterprise's existing prevention and detection products via API. The platform also prioritizes the most dangerous campaigns and predicts which ones are most likely to succeed. MAGIC is deployed as a fully web-based SaaS service and does not require installation of any agents or network devices within the customer's environment. It integrates with existing security tools — including email security, web security, and anti-malware products — using API credentials. The platform is positioned for enterprise security teams that are resource-constrained. Cythereal's technology has been used in academic and applied research, including work by Charles River Analytics on malware family identification and lineage prediction, and by researchers studying Zeus and Citadel malware families.