File classification
The following table lists the possible file status entries that could display for each
CylancePROTECT Desktop
threat.File Status | Description |
|---|---|
File Unavailable | Due to an upload constraint (for example, the file is too large), the file is not available for analysis. Contact BlackBerry Support for an alternate method to transfer the file. |
Blank entry | The file has not yet been analyzed. When an analysis is complete, a new status will be assigned. |
Trusted - Local | The file is considered to be safe. You can add the file to the global safe list so that it will be allowed to execute and will not generate alerts when it is identified on other devices. |
PUP | The file is a Potentially Unwanted Program (PUP), indicating that it might be unsafe even if a user consented to downloading it. Some PUPs may be permitted to run on a limited set of systems in your organization (for example, a VNC application that is allowed to run on domain administrator devices). You can choose to waive or block PUPs on a per device basis, or add it to the global quarantine or safe list based on your organization's standards. The file can have any of the following sub-classes:
|
Dual Use | The file can be used for malicious and non-malicious purposes. For example, while PsExec can be a useful tool for executing processes on another system, that same feature can be used to execute malicious files on another system. The file can have any of the following sub-classes:
|
Malware | The file has been identified as malicious software that is designed to disrupt, damage, or gain unauthorized access to your network, and should be removed as soon as possible. The file can have any of the following sub-classes:
|
Possible Malware | The file has been identified as suspicious software and is considered to be abnormal or unsafe. You can add it to the global quarantine list or safe list based on your organization's standards. |