اضغط هنا للانضمام الى قروب فوجي للإختبارات على تيليقرام

اختبار شهادة محلل الأمن السيبراني CompTIA CySA+

السؤال 311 من 1040

كل الأسئلة

An incident response analyst is investigating the root cause of a recent malware outbreak. Initial binary analysis indicates that this malware disables host security services and performs cleanup routines on infected hosts, including deletion of initial dropper and removal of event log entries and prefetch files from the host. Which of the following data sources would most likely reveal evidence of the root cause? (Select two).

الخيارات

  • A Creation time of dropper
  • B Registry artifacts
  • C EDR data
  • D Prefetch files
  • E File system metadata
  • F Sysmon event log

النقاشات

لا توجد نقاشات منشورة لهذا السؤال حالياً.