Using Orbital with Secure Malware Analytics
Secure Malware Analytics was integrated with Orbital and is available in Secure Malware Analytics for the Secure Endpoint users. If a sample that contains any behavioral indicators with Orbital queries is submitted to Secure Malware Analytics, you will be able to pivot from Secure Malware Analytics directly into Orbital. This pivot will populate the Orbital Builder with that query.
Orbital information and pivot links are available within Secure Malware Analytics in the quick views in several locations:
-
The Samples manager page - In the results dropdown views
-
The Sample Analysis Report - The Behavioral Indicators section contains a toggle to display indicators with Orbital queries and an Orbital queries column with links that will pivot directly into Orbital. The behavioral indicators detailed dropdown view also contains an Orbital query pivot link under Actions.
-
The Indicators page
-
Individual Behavioral Indicator pages