Views:

You may run an EICAR test file to simulate a malware detection. To view the file hash of such event, click the action taken in the Anti-Malware event. It should show the EICAR file hash.

For more information on EICAR and the Anti-Malware Testfile, please visit this link.

Keywords: file hash of blocked action,blocked event file hash

Checking for the file hash of Blocked action events in Deep Security

Product / Version includes:

Deep Security10.0

Last updated: 2021/08/28

Solution ID: KA-0008949

Category: Configure

Summary

Deep Security Anti-Malware module blocks a malware file and it is logged as an event. However, there is no file hash included in the event data. Determine how to check the file hash of such detection event.

You may run an EICAR test file to simulate a malware detection. To view the file hash of such event, click the action taken in the Anti-Malware event. It should show the EICAR file hash.

For more information on EICAR and the Anti-Malware Testfile, please visit this link.

Was this article helpful?

Featured

Automation Center

Education Portal

Online Help Center

Service Status

TrendConnect

Checking for the file hash of Blocked action events in Deep Security

Checking for the file hash of Blocked action events in Deep Security

Product / Version includes:

Summary