Configuring Virtual Analyzer Detections Notifications Parent topic

Deep Discovery Inspector can send this notification when a file does not match any pattern but is recognized as suspicious by Virtual Analyzer within the specified period.
The suspicious file must meet the following criteria:
  • Virtual Analyzer Result: Has analysis results
  • File Detection Type: Highly Suspicious File or Heuristic Detection
  • Virtual Analyzer Risk Level: High, Medium, or Low

Procedure

  1. Go to AdministrationNotificationsNotification SettingsVirtual Analyzer Detections.
    The Virtual Analyzer Detections screen appears.
  2. Select Notify Administrator for malicious content (or threats) detected by Virtual Analyzer only.
  3. Specify a sending interval.
    • Summarize notifications and send according to a set interval.
      Select a value between 1 hour and 24 hours.
    • Send immediately after each detection.
    Tip
    Tip
    Trend Micro recommends sending summary notifications for better performance.
  4. (Optional) Configure the notification recipients.
    For details, see Configuring Email Notification Settings.
  5. (Optional) Modify the default message content.
    1. Type a subject that does not exceed 256 characters.
    2. Type message content that does not exceed 4,096 characters.
    Use any of the following message tokens when customizing the notification.
    Variable
    Description
    __DETECTION_DETAIL__
    Virtual Analyzer detection details
    __HTTPURL__
    Deep Discovery Inspector management console URL
    __TIMESTAMP__
    Notification date and time
    __XHOURS__
    Notification sending interval
  6. Click Save.