Please, I need to understand whats happen in Sand Blast Agent with encrypted files protected by a password.
1) Encrypted file are considered malicious and not sent to the user.
2) Encrypted file are opened in Threat emulation, but before the emulation is necessary that the receiver user know the password to open the file. Is necessary to put this password in the configuration of the Sanblast agent or in the configuration of the Threat Emulator to open the file during the threat emulation operation.
One of these is correct? Or there is another one way?
Thanks a lot