Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
neonbit
Valued Contributor

Created on ‎11-25-2015 03:05 PM

Is there a malware file available to test FortiSandbox?

Hi all,

 

I'm wondering if there's a test malware file that will not trigger the AV but only the FortiSandbox engine, something like eicar but for FortiSandbox.

 

PAN has one that is used to test wildfire, curious if Fortinet have one too?

15853
0 Kudos
7 REPLIES 7
emnoc
Esteemed Contributor III

Created on ‎11-25-2015 05:05 PM

Yes , google wicar they have sample malware that you can test similar to eicar. You can manual select and upload samples into sandbox or wildfire for analysis.

 

Ken

 

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
6240
0 Kudos
neonbit
Valued Contributor
In response to emnoc

Created on ‎11-25-2015 08:06 PM

Nice, thanks for the tip emnoc! I'll give it a test now.

6240
0 Kudos
neonbit
Valued Contributor
In response to neonbit

Created on ‎12-16-2015 11:23 PM

Hi all,

 

FYI I've found there's two sandbox test files available from the fortiguard website:

 

http://www.fortiguard.com/encyclopedia/demo/fsa_dropper.exe http://www.fortiguard.com/encyclopedia/demo/fsa_downloader.exe

 

Both will trigger the sandbox but not the FortiGate AV.

6240
0 Kudos
luancb
New Contributor
In response to neonbit

Created on ‎12-07-2020 10:21 PM

neonbit wrote:

Hi all,

 

FYI I've found there's two sandbox test files available from the fortiguard website:

 

http://www.fortiguard.com/encyclopedia/demo/fsa_dropper.exe http://www.fortiguard.com/encyclopedia/demo/fsa_downloader.exe

 

Both will trigger the sandbox but not the FortiGate AV.

Dear all,

 

Can help me with "testing file" like this, link above have die

 

Thanks

Luan

6240
0 Kudos
thrillseeker
New Contributor

Created on ‎09-05-2018 11:28 AM

Hi all,

 

The links from fortiguard seemed to be outdated.

Is there any new test malware file around to trigger fortisandbox cloud and on-premise?

 

Thanks a lot

Thrillseeker

6240
0 Kudos
emnoc
Esteemed Contributor III
In response to thrillseeker

Created on ‎09-05-2018 12:20 PM

I would ask the  Fortinet team to add it to the  metal test  FWIW

 

http://metal.fortiguard.com/tests/

 

This would provide or should provide a simple pass and fail  output 

 

Ken 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
6232
0 Kudos
heng
Staff
Staff

Created on ‎03-31-2024 09:20 AM

EICAR test file

A plain text EICAR test file (hosted on eicar.org over a HTTPS connection) to test basic AV scanning on the FortiGate using deep inspection.

AI sample file

A machine learning sample file to test AI-based malware detection on the FortiGate.

Virus outbreak (VO) sample file

A zero-day sample virus file to test the outbreak prevention feature of the AV profile.

Behavioral-based samples

Files that are detected by a sandbox. This requires FortiSandbox integration with the FortiGate.

 

https://docs.fortinet.com/document/fortigate/7.4.3/administration-guide/315155/testing-an-antivirus-...

NSE8
2156
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.