Skip to main content
neonbit
neonbit
New Member
November 25, 2015
Question

Is there a malware file available to test FortiSandbox?

  • November 25, 2015
  • 3 replies
  • 18400 views

Hi all,

 

I'm wondering if there's a test malware file that will not trigger the AV but only the FortiSandbox engine, something like eicar but for FortiSandbox.

 

PAN has one that is used to test wildfire, curious if Fortinet have one too?

    3 replies

    emnoc
    emnoc
    New Member
    November 26, 2015

    Yes , google wicar they have sample malware that you can test similar to eicar. You can manual select and upload samples into sandbox or wildfire for analysis.

     

    Ken

     

     

    neonbit
    neonbitAuthor
    New Member
    November 26, 2015

    Nice, thanks for the tip emnoc! I'll give it a test now.

    neonbit
    neonbitAuthor
    New Member
    December 17, 2015

    Hi all,

     

    FYI I've found there's two sandbox test files available from the fortiguard website:

     

    http://www.fortiguard.com/encyclopedia/demo/fsa_dropper.exe http://www.fortiguard.com/encyclopedia/demo/fsa_downloader.exe

     

    Both will trigger the sandbox but not the FortiGate AV.

    thrillseeker
    thrillseeker
    New Member
    September 5, 2018

    Hi all,

     

    The links from fortiguard seemed to be outdated.

    Is there any new test malware file around to trigger fortisandbox cloud and on-premise?

     

    Thanks a lot

    Thrillseeker

    emnoc
    emnoc
    New Member
    September 5, 2018

    I would ask the  Fortinet team to add it to the  metal test  FWIW

     

    http://metal.fortiguard.com/tests/

     

    This would provide or should provide a simple pass and fail  output 

     

    Ken 

    heng
    Staff
    heng
    Staff
    March 31, 2024

    EICAR test file

    A plain text EICAR test file (hosted on eicar.org over a HTTPS connection) to test basic AV scanning on the FortiGate using deep inspection.

    AI sample file

    A machine learning sample file to test AI-based malware detection on the FortiGate.

    Virus outbreak (VO) sample file

    A zero-day sample virus file to test the outbreak prevention feature of the AV profile.

    Behavioral-based samples

    Files that are detected by a sandbox. This requires FortiSandbox integration with the FortiGate.

     

    https://docs.fortinet.com/document/fortigate/7.4.3/administration-guide/315155/testing-an-antivirus-profile

    Terms & ConditionsAccessibility statement