Skip main navigation (Press Enter).

Endpoint Protection

View Only

Back to discussions

Expand all | Collapse all

Hashes

Special NicholasMay 12, 2025 03:19 PM

Can anyone please advise how to block or **** malicious hashes? If yes, can please share the steps.

SepeMay 13, 2025 07:13 AM

You can use Application control, under that there (AC1) is an option to match the file fingerprint. ...

Torsten KnorrMay 14, 2025 12:38 AM

You can use System Lockdown to do this for you. If you have proper IoC's you can use the Blacklisting ...

1. Hashes

Recommend
Special Nicholas
Posted May 12, 2025 03:19 PM

Reply Reply Privately
Can anyone please advise how to block or **** malicious hashes?

If yes, can please share the steps.
2. RE: Hashes

Recommend
Sepe
Posted May 13, 2025 07:13 AM

Reply Reply Privately
You can use Application control, under that there (AC1) is an option to match the file fingerprint. Findong it needs a bit of submenus to be opened, but it's there.

Original Message
3. RE: Hashes

Recommend
Torsten Knorr
Posted May 14, 2025 12:38 AM

Reply Reply Privately
You can use System Lockdown to do this for you.
If you have proper IoC's you can use the Blacklisting to incorporate this easily within your whole environment.

Setting up System Lockdown at the beginning is a bit of work to activate it on every group (if inheritance is deacxtivated), chose the right ****.
Later you can use the **** Update mechanism in SEPM to update the **** centraly outside of SEPM and add or remove IoC's.
One Hash per line.

Read carefully throught the recommendations and try it ...

Configuring system lockdown

Original Message

Copyright 2025. All rights reserved.

Powered by Higher Logic

Global message icon