This article outlines best practices for submitting a potentially malicious file attachment on a Support Request.
VMware Technical Support may occasionally need to collect detection data and the artifact for investigating False Positive, False Negative, or other detection questions in the NSX product. These files will be analyzed by support engineers and threat researchers to improve the detection efficacy of the product.
For submitting malicious URL or domains, see KB:
How to provide malicious domain/URL’s to VMware Technical Support for NSX Threat Response requestsAfter you obtain the necessary file, you must upload it to VMware.