Feb 02 2024 11:46 AM
Long story short, we got an alert about a file being malicious. I searched our environment using both the filename and SHA1 hash and located the file on one endpoint. I initiated an investigation and the investigation status shows as "Failed" providing no causality for the failure. Is there someplace I can look to see why it failed and what I can do to correct it?
Feb 12 2024 06:03 PM
Feb 13 2024 03:10 PM