If you have the 'Deny files on removable media' setting enabled, which is the default setting, you can't make files Allowed on removable drives (e.g. USB sticks) without using hashes.
If you disable this setting, you could just create a file rule for ?:\something.exe and a process rule making it Unrestricted (or whitelist everything else it needs).
However, if you disable that setting someone can bypass Trusted Ownership by changing the owner of an application to Administrators on that drive when plugged into a personal machine, making it pass Trusted Ownership when launched on the corporate device running AM/AC.
The app I need to whitelist has several versions, all with different hashes, and my customer is interested in making it Allowed based on file name/path and metadata alone, not hash.
Is there any way of achieving this without disabling that global setting? i.e. bypassing that global setting for a given file path?