When does a FortiSandbox categorize a file as suspicious?
A. When the file is detected as known greyware
B. When the file matches an antivirus signature that might detect false positives
C. When the file matches a signature in the extended antivirus database
D. When the file is not detected as a known malware, but it has some of the same behaviors as malware