11-29-2020 10:55 PM
Hi Team,
We have received some list of Malicious HASH files and asked us to take the necessary action. But while checking we didn't see the below listed Hash is not covered in Threat Vault.
I want to know why the below mentioned Hash value is not detected in our Palo Alto Engine as a malicious file type due to this we don't have coverage on this mentioned Hash Value to be restricted on our Firewall.
But at the same time on the Virus Total we are able to see some of the engines are detected it as malicious.
Please review the below mentioned HASH value and share me with your thoughts on this.
MD5 HASH Details:
b66be2f7c046205b01453951c161e6cc
46b318bbb72ee68c9d9183d78e79fb5a
b3efec620885e6cf5b60f72e66d908a9
d790997dd950bb39229dc5bd3c2047ff
58bb2236e5aee39760d3e4fc6ee94a79
VirusTotal Results:
Result of 1st Hash Value --> VirusTotal
Result of 2nd Hash Value --> VirusTotal
Result of 3rd Hash Value --> VirusTotal
Result of 4th Hash Value --> VirusTotal
Result of 5th Hash Value --> VirusTotal
Please review on the given information and let us know on why Palo Alto Networks Engine not detected this file type and unable to give the verdict in ThreatVault.
Best Regards,
Sahul Hameed
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
