Report Verdict
The table provided below offers a high-level overview of submission classifications based on their potential threat levels and a summarized overview within your report verdicts.
The final verdict is an aggregate of the detected threat indicators based on our proprietary verdict calculation logic, which is tuned to mitigate the occurrence of both false negative and false positive results, ensuring a more accurate and reliable assessment of potential threats.
The threatLevel
field contains a numeric representation that corresponds to a given verdict. For some verdicts, the threatLevel
is a range, not a single value. See the exact values below.
Verdict | Description | Action | Threat Level - Minimum | Threat Level - Maximum |
---|---|---|---|---|
Benign | The file has been whitelisted based on a hash match with the National Software Reference Library (NSRL), custom whitelists, or valid certificates from reputable software vendors. | No Action | -1 | -1 |
Unknown | This can have multiple reasons. The file is either not supported, the analysis contains insufficient data or an emulator/analysis engine crash happened. | Malware Analysis | 0 | 0 |
No Threat | Although the file is supported, its reputation data and threat indicators do not indicate any known capability typically associated with malware. | No Action | 0.1 | 0.25 |
Suspicious | The file contains some threat indicators commonly found in malware. To address this, please ensure that the MD Cloud Reputation service is enabled and perform an AV engine scan with MetaDefender Multiscanning. | Perform AV engine/reputation check | 0.5 | 0.5 |
Likely Malicious | The file exhibits numerous threat indicators commonly associated with malware, and there is no compelling evidence from the AV engine or reputation services to suggest otherwise. | Block file | 0.75 | 0.75 |
Malicious | The file provides clear evidence of being malware, either due to a critical mass of threat indicators, a true positive indicator, or validation from a first-tier AV engine or reputable source. | Block File | 1 | 1 |
Verdict Visualization

Was this page helpful?