Explore the intricate world of automated malware attribution in this technical conference talk from HITB2024 Bangkok COMMSEC Day 1. Learn how attribution engines analyze malicious code samples to identify cybercriminal groups through code base analysis, tactics, techniques, and network infrastructure examination. Discover how automated threat attribution engines compare specific malware samples against known threat databases using multiple characteristics to generate similarity ratings with established APT group tools. Gain insights from an experienced malware analyst who has spent years studying APT group attacks, analyzing tools and infrastructure, and developing automated classification approaches for Threat Intelligence purposes. Understand how early attribution can help predict attacker behaviors and enable proactive defense strategies in an evolving cyber threat landscape.