You can just create a ACL for the other 2 networks as well and call them in class-map to be matched and redirected.
Example config here.
Dynamic analysis or sandboxing for unknown file does require full file to be submitted which is done on FMC.
But for known files only SHA query is done and Threatgrid would reply back with threat score and AMP cloud would let know the dispositio...
You can add the SHA value of that to whitelist in your policy. If you believe the file is not malicious at all and should not be marked malicious globally, please open TAC case to request for FP analysis.
Hope it helps,
I am assuming you have already got the response from TAC on this. For the benefit of wider audience, there is a the bug which captures this behavior. The bug is not visible externally.
The reason for this is that the interface is not connec...