Use the Attachment Quarantine Sandbox to test for malicious content before releasing attachments or upload a file you are suspicious of.
During the process of retrieving / releasing an attachment from quarantine it is fully analyzed by our AV/Sandbox, unless bypassing is allowed. The process only takes a few mins and gives a brief Analysis Result breakdown with the option to view the full report.
Have a file your unsure of? Upload it to be processed by our AV/Sandbox for malicious content.
Once the attachment(s) have been fully processed you will be shown a brief Sandbox Analysis Result. This report will show you the attachments name and the reported results.
When an attachment is found to be safe it receives a result of No Malware Content Detected. This indicates that during the Sandbox process the file work correctly with no indications of malicious content. If being released from Attachment Quarantine, the attachment is delivered for download by the chosen method.
When an attachment is found to be suspicious it receives a result of Warning- scan results inconclusive, proceed with caution! The attachment is still released in the method chosen, but includes a warning indicating the Sandbox Analysis Report. An Attachment flagged in this manner typically indicates that during the sandbox process the file was found to have suspicious activity during dynamic analysis. Meaning a file may have ran unusual processes, but it is inconclusive if they are malicious in nature. Note, This can also flag if the attachment does not load properly (errors) or is not fully supported by our sandbox.
It is highly recommended to view the full results, Sandbox Analysis Report, before downloading and proceeding to using the file.
When an attachment is found to contain malicious content it receives a result of Virus or Malware Detected! The Attachment is not released, but a message is sent stating the results and includes an option to request an override. Attachments flagged in this this manner indicate that our sandbox Observed malicious activity during dynamic analysis. This result is to be taken seriously and the file should not be executed in anyway, shape, or form. If this file was uploaded it is recommended to notify your IT Admin of the results of our Sandbox Analysis.
It is highly recommended to view the full results, Sandbox Analysis Report, to gain a better understanding on why the file is malicious.
If it is felt this result was an error (or similar circumstances), the recipient can request an Override to allow the release of the attachment(s).
Once the attachment(s) have been fully processed you will be shown a brief scan result with the option to View Results, i.e. Sandbox Analysis Report.
More information over the Sandbox Analysis Results.