File analysis enrichment refers to the process of taking a file, executing it, and recording the behaviors which result from execution. This activity usually takes place in a sandbox environment which would limit the impact of executing a malicious file. Usually file analysis is only performed after File Hash Analysis and when there are no records pertaining to the file hash analyzed. Based on execution behaviors and signatures (like YARA), executables can be identified as benign or malicious.
Analyze suspicious files with Any.run | Story Library | Tines
Analyze Malware with Intezer using Pages | Story library | Tines