Trellix Logo
Why Trellix? Products Research Support Partners Resources
COMPANY
Why Trellix? About Us Industry Recognitions Leadership Corporate Social Responsibility Careers Contact Us
COMPETITION
vs Crowdstrike vs SentinelOne
Trellix Xpand Recap
Trellix Xpand Recap

PRODUCTS
Trellix XDR Endpoint Security SecOps and Analytics Data Security Network Detection and Response Threat Intelligence Collaboration Security Cloud Security View All Products
Trellix CEO
Our CEO on Living Security

Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.

Gartner Marketplace Guide (XDR)
Gartner® Report: Market Guide for XDR

As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."

RESEARCH
Advanced Research Center Adversarial & Vulnerability Research Reports
Trellix Launches Advanced Threat Research Center
Trellix Launches Advanced Research Center

Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.

The Threat Report - February 2023
Latest Report

Trellix Advanced Research Center analyzes Q4 2022 threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.

SUPPORT
Product Support Downloads Product Documentation
CONTACT US
Detection Dispute Form Submit a Sample
MCAFEE ENTERPRISE
Support Portal Customer Success Plans
FIREEYE
Get Support
PARTNERS
Partners Overview Solution Providers Security Innovation Alliance OEM & Embedded Alliances
PARTNER PORTAL
Trellix Hive Login Become a Partner
Trellix HIVE
Welcome Trellix Partners

RESOURCES
Training and Education Consulting Services Webinars Events Case Studies Resource Library
MEDIA
Press Releases News Stories View Newsroom
INTEGRATIONS
Marketplace Developer Portal Trellix Login Trellix Free Trial
SECURITY AWARENESS
What is XDR? What is Endpoint Security? What is EDR? What is MITRE? What is Ransomware? View All Topics

GetSusp

How to use GetSusp

Trellix GetSusp eliminates the need for deep technical knowledge of computer systems to isolate undetected malware. It does this by using a combination of heuristics and querying the Trellix Global Threat Intelligence (GTI) File Reputation database to gather suspicious files.

GetSusp is recommended as a first tool of choice when analyzing a suspect computer. However, one must follow the existing Trellix support process for escalating suspicious files it finds.

GetSusp includes the following features:

  • Delivered as a single executable file with no installation required
  • Option to run in several modes—GUI, command line and ePO mode
  • Scans URLs, Documents, PDFs in GUI mode
  • Option to select files before submitting to McAfee in GUI mode
  • Leverages GTI File Reputation to determine if the sample is suspicious
  • Records system and installed McAfee product information date of execution and details of suspected files
  • GetSusp supports Windows Server 2008 R2 SP1, Windows Server 2012, Windows Server 2016 and Windows 7, 8, 8.1, 10 (up to RS6), 19H1, 19H2, 20H1, 20H2, 21H1, 21H2.

  1. Download the latest version of GetSusp. When prompted, choose to save the executable file to a convenient location on your hard disk. We recommend creating a folder specifically for GetSusp. file.

    Download GetSusp (32-bit) Download GetSusp (64-bit)

    The build below is for Trellix ePO administrators.

    Download GetSusp-ePO (32-bit) Download GetSusp-ePO (64-bit) Download Extension Reports
  2. Once downloaded, launch the GetSusp.exe.
  3. The Trellix GetSusp Interface will be displayed

For a list of Frequently Asked Questions on GetSusp, see article KB 69385.

Building a Culture of Security

Businesses have too much to lose if they don't prioritize security at every entry level. With more date to protect and cyberthreats eveolving, everyone must play a part in creating a culture of security. Let our Free Tools help implement a 'security-first' mindset across your entire company

Need a little more protectionfor your business?

Explore the Trellix Platform