MS-ISAC Malicious Code Analysis Platform (MCAP)


What is the MCAP?

The platform enables users to perform threat analysis based on domain, IP address, URL, HASH and various IOCs.

MCAP is a web-based servise that enables members to submit and analyze suspicious files in a controlled and non-public fashion.

Through this platform, users are able to obtain the analysis results, behavioral characteristics and additional information that will enable them to remediate the incident in a timely manner, while providing the CIS with the situational awareness needed.

Reporting Cyber incidents, vulnerabilities and phishing scams

Information and tips from the US Computer Emergency Readiness Team

What is Cyber Security?

Nationwide Cyber Security Review

Malicious Code Analysis Platform

Multi-State Information Sharing and Analysis Center

DHS Cyber Resilience Review Fact Sheet

Initiatives and Free Resources for Critical Infrastructure

State, local, tribal and territorial cybersecurity engagement


Who can use MCAP?

This platform is available to all members free of charge. Access can be obtained by sending an email to using the following format:

  • Subject line: MCAP - Account Request
  • Body of the email
    • First Name
    • Last Name
    • Name of state, local, tribal or territorial government organization
    • Email address (must be affiliated with a government entity member)

Once the account is approved, you will receive an email containing a link to your one-time password. You can use the credentials to logon to the portal at and change your password.