You can view this information by clicking any 
icon in the first
column on the Security Risk Detections: Predictive Machine
Learning logs screen.
The log details section consists of two tabs:
-
Unknown Threat: Provides the results of the Predictive Machine Learning analysis
-
File Name: Provides general details related the file properties and certificate information for this specific detection log
Tip:Click Add to Exception List to quickly add the file hash value of the affected file to the global Predictive Machine Learning Exception List. View the entire exception list on the Global Settings screen.
For more information, see Configuring Exception List Settings.
The following table discusses the information provided on the Unknown Threat tab.
|
Item |
Description |
|---|---|
|
Threat Probability |
Indicates how closely the file/process matched the malware model |
|
Probable Threat Type |
Indicates the most likely type of threat contained in the file after Predictive Machine Learning compared the analysis to other known threats |
|
Threat Identifiers |
Provides a list a API functions used by the file/process that may be indicative of the detected threat type Important:
API function identification is only one factor in the determination of the threat type. Predictive Machine Learning uses many other file features and analysis methods to calculate the threat probability and probable threat type. |
|
Detection Type |
Type of object that triggered the detection ("File" or "Process") |
|
Similar Known Threats |
Provides a list of known threat types that exhibit similar file/process features to the detection |