This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 63%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMR%3C/text%3E%3C/svg%3E)
I recently had a malware alert on my Azure VM running Windows 10. The malware has been removed, but I would like help completing a forensic analysis of the file path that had the malware alert. My company would like more information on how this malware made it way to our VM, when we are on a VPN with limited access. We wish to find out more information, in order to remediate and prevent any more alerts in the future.
How do I go about getting Microsoft assistance with this process?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 38%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
You'd need to enroll for CWPP (and CSPM) of Microsoft Defender for Cloud (in particular, Defender for Servers)
More at https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-cloud-introduction
and
https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-servers-overview
If the above response helps answer your question, remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution. Your contribution is highly appreciated.
hth
Marcin
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 55.00000000000001%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Hello @Matt Riddle ,
I am just checking in to see if the above answer provided by @Marcin Policht and also my suggestion helped in answering to your question.
If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query please do let us know.
Hello @Matt Riddle ,
Since we didn't receive your response on the above answer and comment, I am just checking in to see if the above answer provided by @Marcin Policht and also my suggestion helped in answering to your queries.
If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query please do let us know.
Hello @Matt Riddle ,
In addition to the information provided by @Marcin Policht , please refer to the below documents related to the Overview of Agentless malware scanning for Virtual Machines in Microsoft Defender for Cloud which will be helpful.
Enable agentless scanning for VMs - Microsoft Defender for Cloud | Microsoft Learn
I hope this above information provided is helpful. Please feel free to reach out if you have any further questions.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".