use application policy of ADC policy or IPS signature
https://www-secure.symantec.com/connect/forums/how-block-applications-sep-using-md5
About best practices for creating application control rules
http://www.symantec.com/business/support/index?page=content&id=HOWTO55145
Symantec Endpoint Protection Manager - Application and Device Control - Policies explained
http://www.symantec.com/docs/TECH104431
WhitePaper on Application and Device Control:
http://www.symantec.com/avcenter/security/ADC/Configuring_Application_Control_1.1.pdf
Also check these articles
https://www-secure.symantec.com/connect/articles/block-mp3-downloads-using-ips-signatures-sepm
https://www-secure.symantec.com/connect/articles/use-customize-ips-forbit-access-special-subsite