Scan For Malware Dialog

In the Scan for Malware dialog, Malware Analysis analysts can upload files to investigate in Malware Analysis.

To access this dialog go to the Malware Analysis view. In the Select a Malware Analysis Service dialog, select a service in the left panel, then click netwitness_scanfiles.png in the right panel.

Workflow

netwitness_invwkflwhlpma.png

What do you want to do?

User Role I want to ... Show me how
Threat Hunter

browse event metadata

NetWitness Investigate User Guide

Threat Hunter

browse raw events

NetWitness Investigate User Guide

Threat Hunter

analyze raw events and metadata

NetWitness Investigate User Guide

Threat Hunter investigate endpoints (Version 11.1)

NetWitness Endpoint User Guide

Threat Hunter

find suspicious endpoint files (Version 11.1)

NetWitness Endpoint User Guide

Threat Hunter scan files and events for malware* Conducting Malware Analysis

Incident Responder

triage an incident in Investigate

NetWitness Respond User Guide

*You can perform this task in the current view.

Related Topics

  • "How NetWitness Investigate Works" in the NetWitness Investigate User Guide
  • Begin a Malware Analysis Investigation
  • "Launch a Malware Analysis Scan from the Navigate View" in the NetWitness Investigate User Guide

Quick Look

The figure below illustrates the Scan for Malware dialog, and The following table describes the features available in the dialog.

netwitness_scanmwdialog.png

Feature Description
netwitness_add.png Uploads a file from your computer.
netwitness_delete.png Deletes a file from the list.
File Name Displays the names of the files added to the list.
Name Allows you to name the scan job.
Community Displays options for Community to bypass or ignore certain types of files:
  • Bypass Executable
  • Bypass Office
  • Bypass PDF
Sandbox Displays options for Sandbox to bypass or ignore certain types of files:
  • Bypass Executable
  • Bypass Office
  • Bypass PDF
Cancel Closes the dialog without performing any actions.
Scan Scans the uploaded files.