AnsweredAssumed Answered

Encrypted files on Sandblast agent

Question asked by Giancarlo Cotta Ramusino on Jun 15, 2018
Latest reply on Jun 20, 2018 by Charris Lappas



Please, I need to understand whats happen in Sand Blast Agent with encrypted files protected by a password.


I suppose:


1) Encrypted file are considered malicious and not sent to the user.


2) Encrypted file are opened in Threat emulation, but before the emulation is necessary that the receiver user know the             password to open the file. Is necessary to put this password in the configuration of the Sanblast agent or  in    the        configuration of the Threat Emulator to open the file during the threat emulation operation.


One of these is correct? Or there is another one way?

Thanks a lot