Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Malicious File - ArchiveFile - W32.7F4CBDDDA2.RET.SBX.TG

cnaron
Comes here often
‎Apr 13 2023 7:59 AM
‎Apr 13 2023 7:59 AM

Malicious File - ArchiveFile - W32.7F4CBDDDA2.RET.SBX.TG

Reporting across 100+ sites, I've seen others reporting this as well.  Appears to be MS update related, disposition changed and is now flagging as malicious/blocked.  1000's were allowed through before disposition was changed.  Same thing happened about a year ago, related to an MS update.

 

Source:  9.tlu.dl.delivery.mp.microsoft.com

 

[http://9.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/8dea8123-fd8f-492c-9c2d-7cdfab740447?P1=1681398256&P2=404&P3=2&P4=MfVNhcdbZfud6jewyT%2b8ana%2b8c9bZAGjTJzFleDabV567nUloqLAlJM78V5wGwfOSpnIKNtbXOKduQ%2fJeWBylQ%3d%3d]

Labels:
0 Kudos
Subscribe
3 Replies 3
Jameson
Getting noticed
‎Apr 13 2023 8:03 AM
‎Apr 13 2023 8:03 AM

Following the same issue in our environment on this post as well: Re: MX Malware Blocking - The Meraki Community

0 Kudos
Subscribe
ConnorL
Meraki Employee
Meraki Employee
‎Apr 13 2023 8:28 AM
‎Apr 13 2023 8:28 AM

Follow along on this thread for updates: https://community.meraki.com/t5/Meraki-Service-Notices/Security-Center-False-Positive-Alert-April-13...

0 Kudos
Subscribe
BlakeRichardson
Kind of a big deal
Kind of a big deal
‎Apr 13 2023 12:34 PM
‎Apr 13 2023 12:34 PM

Issue is resolved.

 

https://status.meraki.net/incidents/66pj1lx1m4vs

btr.net.nz
0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.