Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

Carbon Black Cloud: What Does the Heuristic File Reputation Mean?

Carbon Black Cloud: What Does the Heuristic File Reputation Mean?

Environment

  • Carbon Black Cloud Console: All Versions
  • Carbon Black Cloud Sensor: All Supported Versions

Question

What does the Heuristic reputation mean?

Answer

  • Heuristic reputation is applied when a file is suspected to be malicious based on a set of attributes, but analysis cannot definitively determine whether the file is malware.
  • It generally indicates a level of confidence above Suspect Malware, but below Known Malware reputation.

Additional Notes

  • When it comes to Policy enforcement, processes with Heuristic reputation are subject to the same Prevention rules as Suspect Malware.
  • As Carbon Black Cloud employs a variety of analysis techniques, file reputations can change over time with further analysis.
  • Other reputation that can be assigned to suspicious files include PUP, Adware, and Suspect Malware.

Related Content


Was this article helpful? Yes No
No ratings
Article Information
Author:
Creation Date:
‎04-24-2023
Views:
765
Contributors