cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Block malware filehash values using applocker

hari-siva
Copper Contributor

‎Aug 23 2021 05:40 PM

‎Aug 23 2021 05:40 PM

Block malware filehash values using applocker

Hi All, is there a way we can block malware filehash values using Applocker GPO without having to locate or have a actual copy of the malware file ? appreciate your response... cheers.. 

Labels:
1,192 Views
1 Like
8 Replies
Reply
8 Replies
A1

‎Aug 23 2021 11:01 PM

‎Aug 23 2021 11:01 PM

Re: Block malware filehash values using applocker

https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-con...
Hello , I think the malware mechanisms are working not visible
and group rules will not be effective!
0 Likes
Reply
hari-siva

‎Aug 24 2021 12:04 AM

‎Aug 24 2021 12:04 AM

Re: Block malware filehash values using applocker

thanks Andrzej1 , let me check it and advise..
0 Likes
Reply
Eric Starker

‎Aug 24 2021 09:46 AM

‎Aug 24 2021 09:46 AM

Re: Block malware filehash values using applocker

@hari-siva 

Hello! You've posted your question in the Tech Community Discussion space, which is intended for discussion around the Tech Community website itself, not product questions. I'm moving your question to the Windows security space- please post Windows security questions here in the future.

 

(If I am incorrect on the topic you are asking about, please let me know.) 

1 Like
Reply
Reza_Ameri

‎Aug 24 2021 10:51 AM

‎Aug 24 2021 10:51 AM

Re: Block malware filehash values using applocker

AppLocker is NOT a replacement for Anti-Malware product and to set a policy, you will need to have a sample of it.
However, you may do it other way, like create a whitelist and only add trusted applications and place the rest into black list, so it will block everything else.
In case it is a malware, you may report it to Microsoft Anti-Malware team to create a signature. You may upload it to websites where they product hash key.
0 Likes
Reply
hari-siva

‎Aug 24 2021 09:25 PM

‎Aug 24 2021 09:25 PM

Re: Block malware filehash values using applocker

thanks Eric.
0 Likes
Reply
hari-siva

‎Aug 24 2021 09:25 PM

‎Aug 24 2021 09:25 PM

Re: Block malware filehash values using applocker

Thanks Reza_Ameri.
0 Likes
Reply
Reza_Ameri

‎Aug 25 2021 07:57 AM

‎Aug 25 2021 07:57 AM

Re: Block malware filehash values using applocker

Welcome, glad it was helpful
0 Likes
Reply
scsecurium

‎Sep 16 2021 04:04 AM

‎Sep 16 2021 04:04 AM

Re: Block malware filehash values using applocker

@hari-siva  Malware threats and related cyberattacks have increased eventually. That's why cybersecurity awareness has become essential in today's generation. So, I would suggest for Online Cybersecurity Training to avoid such circumstances in the future.

0 Likes
Reply