Virtual Analyzer Detections Notifications

Deep Discovery Inspector can send notifications when a file does not match any pattern but is recognized as suspicious by Virtual Analyzer within the specified period.

Suspicious files must meet the following criteria:

Virtual Analyzer Result: Has analysis results
File Detection Type: Highly Suspicious File or Heuristic Detection
Virtual Analyzer Risk Level: High, Medium, or Low

Procedure

Go to Administration → Notifications → Notification Settings → Virtual Analyzer Detections.
Select Notify Administrator for malicious content (or threats) detected by Virtual Analyzer only.

Specify a sending interval.

Summarize notifications and send according to a set interval.

Select a value between 1 hour and 24 hours.
Send immediately after each detection.

Tip

Trend Micro recommends sending summary notifications for better performance.

(Optional) Configure the notification recipients.

For details, see Configuring Email Notification Settings.

(Optional) Modify the default subject and message body.

Note

The message body cannot exceed 4,096 characters.
The message subject cannot exceed 256 characters.

You can use any of the following message tokens when customizing the notification.

Variable	Description
__DETECTION_DETAIL__	Virtual Analyzer detection details
__HTTPURL__	Deep Discovery Inspector management console URL
__TIMESTAMP__	Notification date and time
__XHOURS__	Notification sending interval

Click Save.

/*<![CDATA[*/ $('#title').html($('meta[name=description]').attr('content')); /*]]>*/

Virtual Analyzer Detections Notifications

Procedure

Tip

Note