https://live.paloaltonetworks.com/t5/general-topics/create-threat-signature/m-p/140242#M48246 <P>I believe you can make custom vulnerability signatures but I&nbsp;don't think that allows the use of hashes just because they change to often to be reliable.</P><P>&nbsp;</P><P><A href="https://live.paloaltonetworks.com/t5/Tech-Note-Articles/Creating-Custom-Threat-Signatures/ta-p/58569" target="_blank">https://live.paloaltonetworks.com/t5/Tech-Note-Articles/Creating-Custom-Threat-Signatures/ta-p/58569</A></P><P>&nbsp;</P><P>- Peter</P> Tue, 31 Jan 2017 13:46:39 GMT sullivanpj2 2017-01-31T13:46:39Z https://live.paloaltonetworks.com/t5/general-topics/create-threat-signature/m-p/140232#M48244 <P>Hi Guys,</P><P>&nbsp;</P><P>I need to know if I can create a threat signature in case I've only the malware hash.</P><P>&nbsp;</P><P>Is it possible to do on PA?</P><P>&nbsp;</P><P>If not, Is there any other way I can block malwares based on hashes only?</P><P>&nbsp;</P><P>Regards,</P><P>Sharief</P> Tue, 31 Jan 2017 13:35:16 GMT https://live.paloaltonetworks.com/t5/general-topics/create-threat-signature/m-p/140232#M48244 MohamedSharief 2017-01-31T13:35:16Z https://live.paloaltonetworks.com/t5/general-topics/create-threat-signature/m-p/140242#M48246 <P>I believe you can make custom vulnerability signatures but I&nbsp;don't think that allows the use of hashes just because they change to often to be reliable.</P><P>&nbsp;</P><P><A href="https://live.paloaltonetworks.com/t5/Tech-Note-Articles/Creating-Custom-Threat-Signatures/ta-p/58569" target="_blank">https://live.paloaltonetworks.com/t5/Tech-Note-Articles/Creating-Custom-Threat-Signatures/ta-p/58569</A></P><P>&nbsp;</P><P>- Peter</P> Tue, 31 Jan 2017 13:46:39 GMT https://live.paloaltonetworks.com/t5/general-topics/create-threat-signature/m-p/140242#M48246 sullivanpj2 2017-01-31T13:46:39Z https://live.paloaltonetworks.com/t5/general-topics/create-threat-signature/m-p/140471#M48277 <P>That's correct Peter! you can't. Just tried that in my lab.</P><P>&nbsp;</P><P>Regards,</P><P>Sharief</P> Wed, 01 Feb 2017 13:48:02 GMT https://live.paloaltonetworks.com/t5/general-topics/create-threat-signature/m-p/140471#M48277 MohamedSharief 2017-02-01T13:48:02Z