Skip to main content


This Script is part of the Phishing Pack.#

Supported versions

Supported Cortex XSOAR versions: 6.1.0 and later.

Use this script to delete a reported phishing email from the mailbox it was reported to.

Script Data#

Script Typepython3
Cortex XSOAR Version6.1.0


Argument NameDescription
delete_typeThe type of deletion - soft allows restoring, hard doesn't. Not relevant for O365 and Search & Compliance.
delete_from_brandThe brand for which to delete this email from. The default value is the incident using the brand.
search_nameArgument used for the generic polling flow within the security and compliance search.
pollingUse the Cortex XSOAR built-in polling to retrieve the result when it's ready.
interval_in_secondsInterval in seconds between each poll.


DeleteReportedEmail.resultWhether the deletion operation was successful, skipped, or failedString
DeleteReportedEmail.deletion_failure_reasonThe reason of failure if the deletion operation failed or skippedString
DeleteReportedEmail.delete_typeWhether the deletion operation was hard or soft.String
DeleteReportedEmail.using_brandThe email service that was used to delete the email.String
DeleteReportedEmail.email_subjectThe subject of the deleted email.String
DeleteReportedEmail.message_idThe message ID of the deleted email.String