Hi!
I'd like to suggest adding some more details in the email sent to the security/network staff.
For example it would be helpful to have File creation date+time, creator, SHA1, SHA256 and SSDEEP information about the file that just got removed.
Just because it helps understanding if those .exe files were really malicious or not. Without that information our experience is a bad starting point to analyse a problem.
Looking forward to your answer.
Best regards
User XXYY
This thread was automatically locked due to age.