Extracted files tab

Kaspersky Threat Intelligence Portal provides information about files that were extracted from network traffic or saved by the executed file during the execution.

This tab is available only for registered users.

Transferred files

Files that were extracted from network traffic during the file execution.

Transferred files

Field name

Description

Status

Status of the transferred file (Clean, Adware and other, Malware, Not categorized).

MD5

MD5 hash of the transferred file.

Traffic

Traffic that the transferred file was extracted from (HTTP or HTTPS).

Detection name

Name of the detected object (for example, HEUR:Exploit.Script.Blocker). Each item in the list is clickable—you can click it to view its description at the Kaspersky threats website.

Dropped files

Files that were saved or changed by the executed file in the operating system.

Dropped files

Field name

Description

Status

Status of the downloaded file (Clean, Adware and other, Malware, Not categorized).

MD5

MD5 hash of the downloaded file.

Detection name

Name of the detected object (for example, HEUR:Exploit.Script.Blocker). Each item in the list is clickable—you can click an item to view its description at Kaspersky threats website.

File name

File name of the dropped file.

Page top