The InQuest Deep File Inspection platform contains a tailored dictionary list used to attempt the decryption of password protected files and detect otherwise hidden malware. This additional detection capability augments proprietary threat intelligence with insight into emerging threat campaigns, new TTPs, and evolving malware families.
As part of our email security solution, we analyze the full context of the email (body, OCR, etc) to identify passwords that can be used to peer into the encrypted layers. This dynamically produced password list that can be used to decrypt and analyze protected attachments.
Read more about InQuest's Cloud Email Security!