Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Namespace: microsoft.graph
Important
APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported. To determine whether an API is available in v1.0, use the Version selector.
Note
The legacy alerts API is deprecated and will be removed by April 2026. We recommend that you migrate to the new alerts and incidents API.
Contains stateful information about the malware entity.
Properties
| Property | Type | Description |
|---|---|---|
| category | String | Provider-generated malware category (for example, trojan, ransomware, etc.). |
| family | String | Provider-generated malware family (for example, 'wannacry,' 'notpetya,' etc.). |
| name | String | Provider-generated malware variant name (for example, Trojan:Win32/Powessere.H). |
| severity | String | Provider-determined severity of this malware. |
| wasRunning | Boolean | Indicates whether the detected file (malware/vulnerability) was running at the time of detection or was detected at rest on the disk. |
Relationships
None.
JSON representation
The following JSON representation shows the resource type.
{
"category": "String",
"family": "String",
"name": "String",
"severity": "String",
"wasRunning": true
}