Correlated Events - Detection Details - File Analysis Result - Notable Characteristics

Information provided in the File Analysis Result - Notable Characteristics section of the Detection Details screen may include characteristics that are commonly associated with malware. Characteristics are grouped into the following categories:

  • Anti-security, self-preservation

  • Autostart or other system reconfiguration

  • Deception, social engineering

  • File drop, download, sharing, or replication

  • Hijack, redirection, or data theft

  • Malformation or other known malware traits

  • Process, service, or memory object change

  • Rootkit, cloaking

  • Suspicious network or messaging activity

  • Other notable characteristic