File sandboxing
Note: You must have the Forcepoint Advanced Malware Detection for Email module to use this feature.
Use the
page to send suspicious files received in email messages to a cloud-hosted sandbox for analysis. The sandbox activates the file, observes the behavior, and compiles a report. If the file is malicious, the message is either quarantined, or an email alert is sent to the administrators that you specify, containing summary information and a link to the report.A file that qualifies for sandboxing:
- Is not classified as “malicious” by virus scanning or Forcepoint ThreatSeeker Intelligence
- Fits the Security Labs profile for suspicious files
- Is a supported file type for sandboxing.
Note: Because the file was not detected as malicious, it was not blocked and has been delivered to the email recipient.