Analyzing malware Upload files and URLs for analysis. You can monitor the status of malware analysis using Advanced Threat Defense web interface, then view the results. Analyze files Advanced Threat Defense performs static and dynamic analysis on the files you submit. Analyze URLsAdvanced Threat Defense analyzes the URL in an analyzer VM determined by the user profile, and reports the file analysis results. Advanced Threat Defense uses only the local blacklist and dynamic analysis for the downloaded file. In addition, the McAfee GTI reputation of the URL is reported. The behavior of the browser when opening the URL is also analyzed for malicious activity. Monitor the status of malware analysisThe Analysis Status page provides status of your submitted files till the analysis is complete. View the analysis resultsView the file analysis results on the Analysis Reports page. In case of dynamic analysis if you have selected multiple VM profiles, then the file will have one Job ID and separate Task IDs for each VM profile. In case a sample is detected by Static Analysis then only one entry with one Job ID and one Task ID will be created. Submit false positive and negative samples If you find false positive and negative samples in Advanced Threat Defense, submit the samples for further analysis. Troubleshoot low sandbox file scoresUse Advanced Threat Defense elements to troubleshoot unexpectedly low sandbox file scores. Monitor Advanced Threat Defense with the DashboardTo analyze the malware on your network, use the Advanced Threat Defense Dashboard monitors.
Analyzing malware Upload files and URLs for analysis. You can monitor the status of malware analysis using Advanced Threat Defense web interface, then view the results. Analyze files Advanced Threat Defense performs static and dynamic analysis on the files you submit. Analyze URLsAdvanced Threat Defense analyzes the URL in an analyzer VM determined by the user profile, and reports the file analysis results. Advanced Threat Defense uses only the local blacklist and dynamic analysis for the downloaded file. In addition, the McAfee GTI reputation of the URL is reported. The behavior of the browser when opening the URL is also analyzed for malicious activity. Monitor the status of malware analysisThe Analysis Status page provides status of your submitted files till the analysis is complete. View the analysis resultsView the file analysis results on the Analysis Reports page. In case of dynamic analysis if you have selected multiple VM profiles, then the file will have one Job ID and separate Task IDs for each VM profile. In case a sample is detected by Static Analysis then only one entry with one Job ID and one Task ID will be created. Submit false positive and negative samples If you find false positive and negative samples in Advanced Threat Defense, submit the samples for further analysis. Troubleshoot low sandbox file scoresUse Advanced Threat Defense elements to troubleshoot unexpectedly low sandbox file scores. Monitor Advanced Threat Defense with the DashboardTo analyze the malware on your network, use the Advanced Threat Defense Dashboard monitors.