Virtual Analyzer Detections Notifications Parent topic

Deep Discovery Inspector can send notifications when a file does not match any pattern but is recognized as suspicious by Virtual Analyzer within the specified period.
Suspicious files must meet the following criteria:
  • Virtual Analyzer Result: Has analysis results
  • File Detection Type: Highly Suspicious File or Heuristic Detection
  • Virtual Analyzer Risk Level: High, Medium, or Low

Procedure

  1. Go to AdministrationNotificationsNotification SettingsVirtual Analyzer Detections.
  2. Select Notify Administrator for malicious content (or threats) detected by Virtual Analyzer only.
  3. Specify a sending interval.
    • Summarize notifications and send according to a set interval.
      Select a value between 1 hour and 24 hours.
    • Send immediately after each detection.
    Tip
    Tip
    Trend Micro recommends sending summary notifications for better performance.
  4. (Optional) Configure the notification recipients.
  5. (Optional) Modify the default subject and message body.
    Note
    Note
    • The message body cannot exceed 4,096 characters.
    • The message subject cannot exceed 256 characters.
    You can use any of the following message tokens when customizing the notification.
    Variable
    Description
    __DETECTION_DETAIL__
    Virtual Analyzer detection details
    __HTTPURL__
    Deep Discovery Inspector management console URL
    __TIMESTAMP__
    Notification date and time
    __XHOURS__
    Notification sending interval
  6. Click Save.