Do we have an example of a report on a file that was submitted?

If a file is malicious, what does the alert/report look like on that file?

Does it include Operating Change log?

Does it include a PCAP?

Any help would be appreciated.

Hey @addis.hallmark!

Example report is captured in https://fireeye.dev/apis/ under reports endpoint section.

APIs provide JSON report for malicious and benign submissions.
#1, Yes report includes OS change behavior report.
#2, No it does not include PCAP file although if sample shows network behavior that is being captured as part of JSON report.

Please let us know if more information is needed.