Deep Discovery Email
Inspector can synchronize suspicious objects with an external source
(for example, Trend Vision One, Apex Central, Deep Discovery Director, or Deep Discovery
Analyzer). View synchronized suspicious objects to understand your risk, find
related messages, and assess the relative prevalence of the suspicious object.
 |
Note
|
Procedure
- Go to .
- Specify the search criteria.
- Suspicious Object (IP address, host name, URL, file SHA-1, or file SHA-256)
- Period (time range to filter based on the last synchronized time)
- Press ENTER.All suspicious objects matching the search criteria appear.
- View the results.HeaderDescriptionSuspicious ObjectView the IP address, host name, URL, file SHA-1, or file SHA-256 associated with the synchronized suspicious object.TypeView the suspicious object type (Domain, File, IP, or URL).Risk LevelView the level of potential danger in a sample after Virtual Analyzer executes the file or opens the URL.SourceView the source of the synchronized suspicious object.The source can be one of the following:
-
Trend Vision One
-
Apex Central
-
Deep Discovery Analyzer
-
Deep Discovery Director
User-DefinedView whether the synchronized suspicious object is user-defined or not.ExpirationView the date and time the object is not considered suspicious.Last SynchronizedView the date and time the entry was last synchronized with the source. -