You can configure OfficeScan agents to submit file objects that may contain previously unidentified threats to a Virtual Analyzer for further analysis. After assessing the objects, Virtual Analyzer adds any objects found to contain unknown threats to the Virtual Analyzer Suspicious Objects lists and distributes the lists to other OfficeScan agents throughout the network.
For more information, see Suspicious Object List Settings.
Sample Submission requires the following:
You must register the OfficeScan server with a Trend Micro Control Manager server (6.0 SP3 Patch 2 or later)
The Trend Micro Control Manager server must have an active connection to a Trend Micro Deep Discovery Analyzer server (5.1 or later)
Suspicious files include any of the following:
Programs not known to Trend Micro (downloaded through supported web browsers or email channels)
Heuristic detections of processes (downloaded through supported web browsers or email channels)
Low prevalence autorun programs on removable storage
OfficeScan agents can submit sample files up to 50 MB in size to the Virtual Analyzer for analysis.