File Trust Status

FIM enables users to know whether a file was published by Trusted Source. Based on the file content hash, File Trust status is derived.

It is applicable for PE files only. Trust status of files can be seen in Events Details page for Events of type Create and Content.

Possible values of trust status are : Trusted and Unavailable.

file trust status