Graphus performs deep threat analysis on all interactions from untrusted or spoofed identities.
If the communication includes URLs then those URLs are analyzed for phishing threat. If a URL is found to be a phishing attack then an alert is generated.
If the communication includes URL links to downloads then those downloads are analyzed for malicious behavior. If a download is found malicious (presence of malware) then the email is quarantined and alerts are generated.