These are some prime resources that I leverage to monitor public malware research.
The C2 matrix, this is a public repository of knowledge on specific command and control configurations
APT Groups and Operations This is a collaborative spreadsheet that serves as an overview to identify threat actor pseudonyms and notable research.
Approach
The majority of SOC organizations have a reactive approach to malware. When an incident occurs the malware family is not of direct concern and the operations handle it like a generic malware infection case. However, the ability to specifically identify the malware in question can significantly direct forensics and incident response processes especially if a specific malware Profile and/or Runbook is made.
Because of this I prioritize the identification of the top 5 (top 10 preferably) of malware families that have targeted the organization. This can be through endpoint logging, mailfiltering, network traffic or other telemetry.
By identifying a top 3 of most significant malware that actually reached the organization they can now start to work on gathering a knowledgebase to better understand this malware family and work on courses of action on how to respond to a specific infection.