Views:

From DDEI, download the SO from the internal Virtual Analyzer, DDAN or TMCM, and use them for virus scan.

The detection name by SO for the malicious samples are the following:

Malicious Type	SO Type	Detection Name
File	Consolidated SO	CSO_SUSPICOIOUS_FILE.UMXX
File	User-defined SO	USR_SUSPICOIOUS_FILE.UMXX
URL	Consolidated SO	CSO_SUSPICOIOUS_URL.UMXX
URL	User-defined SO	USR_SUSPICOIOUS_URL.UMXX

Keywords: CSO_SUSPICOIOUS_FILE.UMXX,SO for malicious sample scanning,Suspicious Object ,SO DDEI,malicious sample scanning,virus scanning,SO for virus scanning

Suspicious Object (SO) file detection in Deep Discovery Email Inspector (DDEI)

Product / Version includes:

Deep Discovery Email Inspector3.0 , Deep Discovery Email Inspector2.6

Last updated: 2021/08/28

Solution ID: KA-0006853

Category: Troubleshoot , Deploy , Upgrade , Remove a Malware / Virus

Summary

DDEI supports the use of SO for malicious sample (Files/URLs) scanning.

From DDEI, download the SO from the internal Virtual Analyzer, DDAN or TMCM, and use them for virus scan.

The detection name by SO for the malicious samples are the following:

Malicious Type	SO Type	Detection Name
File	Consolidated SO	CSO_SUSPICOIOUS_FILE.UMXX
File	User-defined SO	USR_SUSPICOIOUS_FILE.UMXX
URL	Consolidated SO	CSO_SUSPICOIOUS_URL.UMXX
URL	User-defined SO	USR_SUSPICOIOUS_URL.UMXX

Was this article helpful?

Featured

Automation Center

Education Portal

Online Help Center

Service Status

TrendConnect

Suspicious Object (SO) file detection in Deep Discovery Email Inspector (DDEI)

Suspicious Object (SO) file detection in Deep Discovery Email Inspector (DDEI)

Product / Version includes:

Summary