Testing Scan Engine functionality with Symantec Central Quarantine Server

I recently received a case where a customer wanted to test the Symantec Scan Engine functionality where it can forward a threat to a Central Quarantine server.

After a lot of testing, we were able to determien that EICAR would not be forwarded, it only get deleted. I talked with the Symantec Security Response team and they provided me with a fake macro test file that Scan Engine detected and forwarded successfully!

I am still waiting for confirmation on if this is a file that can be shared with customer as a test file. I will post it if I can!