Thank you! We have opened a ticket regarding this topic...
Original Message:
Sent: Mar 17, 2023 03:54 AM
From: Ed Agoff
Subject: SEPM quarantined files upload - files not pristine
They are encoded so administrators don't drop a load of malicious files onto their SEPM when they select-all and download. But you can safely upload them to symsubmit.symantec.com for analysis. Please open a case with technical support if you must know how to decode them. Thanks!
Original Message:
Sent: Mar 16, 2023 10:35 AM
From: Michael Dorner
Subject: SEPM quarantined files upload - files not pristine
Is nobody using this feature, or is nobody facing this issue?
Original Message:
Sent: Mar 14, 2023 04:59 AM
From: Michael Dorner
Subject: SEPM quarantined files upload - files not pristine
Hi community,
we have enabled the "Upload quarantined files from the clients" feature within our default SEPM domain.
This works really well and all "detections" are uploaded to the central SEPM server, but when I try to download the samples from SEPM server for further analysis the file I get seems not to be pristine.
Is there something that I am missing (e.g. a tool to decode/unpack the file)?
I don't get the point of uploading files to SEPM, if I can't use them afterwards.
best regards,
Michael