The predefined data pattern service in Prisma
SaaS uses WildFire analysis to detect known and unknown malware
by file type. By default, Prisma SaaS automatically submits Windows
executables, Microsoft Office files, and Portable Document Format
(PDF) files to the WildFire service for analysis, classification
and reporting as follows:
WildFire reports the file
information, including the hash, file, type, and size.
WildFire static analysis leverages the machine learning capabilities
of WildFire to display samples that contain characteristics of known malware.
WildFire Dynamic Analysis displays the details about the
malicious host and network activity the file exhibited in the different
WildFire sandbox environments.