Sandbox false positive .NET 6.0.11 Update
It seems, that the sandbox has a false positive on the windows update for the .net application.
URL: au.download.windowsupdate.com/c/msdownload/update/software/crup/2022/10/windowsdesktop-runtime-6.0.11-win-x64_b9e3ab8e3048170d9e3eabf6761d423eb4c93c6d.exe
Hash value: 5cd9064d70607bd1cb8b6eb6405360f9
Is there no way to whitelist certain files or URL's?
Kind regards,
Michael
0
Accepted Solution
-
Hi @Dexta,We change the hash value "5cd9064d70607bd1cb8b6eb6405360f9" to "Clean" category. The file will not be detected as suspicious. Remember to reboot the device to clean device's local cache of Anti-Malware and Sandboxing. Then monitor the Sandboxing logs and see if the issue is resolved.0
All Replies
-
Hi @Dexta,Is the file deteted as malicious or suspicious file? Please go to MONITOR > Security Statistics > Sandboxing > Summary and capture the screen shot of "Statistics" for us.0
-
Hi,it's marked as suspicious. Attached you find to picuters. I couldn't find the path you wrote. Propably because we are using nebula.Let me know if you need something else.0
-
Hi @Dexta,We change the hash value "5cd9064d70607bd1cb8b6eb6405360f9" to "Clean" category. The file will not be detected as suspicious. Remember to reboot the device to clean device's local cache of Anti-Malware and Sandboxing. Then monitor the Sandboxing logs and see if the issue is resolved.0
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 141 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.5K Security
- 216 USG FLEX H Series
- 262 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 39 Wireless Ideas
- 6.3K Consumer Product
- 243 Service & License
- 382 News and Release
- 81 Security Advisories
- 27 Education Center
- 8 [Campaign] Zyxel Network Detective
- 3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight