The WildFire public cloud can now analyze and classify linux
(ELF) and archive (RAR and 7-Zip) files with malicious, benign,
or grayware verdicts. As with all malicious samples, WildFire public
cloud generates and distributes a signature to firewalls to prevent
future instances of the file from penetrating your network. Keep
in mind, the WildFire appliance does not support ELF and archive
Archive and ELF file types are sent in their entirety to
the WildFire cloud when submitted for analysis, as they are not
decoded by the firewall.
The following new file types are supported for WildFire public
RAR—Supports Roshal Archive
7-Zip—Supports (.7z) files.
archive file verdict is determined by the highest severity verdict
of the archive contents.
Archive files that are multi-part or password protected cannot
ELF—Supports Executable and Linkable Format (.elf) files.