AnsweredAssumed Answered

CP Signature detections and naming convention

Question asked by cezar varlan on Dec 13, 2018
Latest reply on Dec 14, 2018 by cezar varlan

What is the meaning of "HEUR":Exploit.Signature in the signature detection phase?

Does this mean it's some kind of heuristic signature?

 

For example:

On ThreatWiki | Check Point Software  i need to search for Exploit.Msoffice.Cve-2017-0199.ex

 

However in the detection alert i have:

HEUR:Exploit.Msoffice.Cve-2017-0199.ex

 

Outcomes