Cisco 350-201 Exam - Topic 3 Question 33 Discussion

Actual exam question for Cisco's 350-201 exam

Question #: 33
Topic #: 3

An employee abused PowerShell commands and script interpreters, which lead to an indicator of compromise (IOC) trigger. The IOC event shows that a known malicious file has been executed, and there is an increased likelihood of a breach. Which indicator generated this IOC event?

AExecutedMalware.ioc

BCrossrider.ioc

CConnectToSuspiciousDomain.ioc

DW32 AccesschkUtility.ioc

Show Suggested Answer

Suggested Answer: D

by Simona at May 09, 2022, 12:53 PM

Limited Time Offer

25%

Off

Get Premium 350-201 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Hector

5 months ago

100% A, no doubt about it!

upvoted 0 times

...

Salena

5 months ago

Wait, is it really that straightforward? I'm surprised it's not more complex.

upvoted 0 times

...

Malcom

5 months ago

A seems right, but I wouldn't rule out B either.

upvoted 0 times

...

Karma

5 months ago

I think it could be C, suspicious domains are a big red flag too.

upvoted 0 times

...

Rozella

5 months ago

Definitely A, executed malware is a classic IOC.

upvoted 0 times

...

Paris

6 months ago

This is a good test of my XML knowledge. I'll methodically go through each option and check it against the schema to determine the right one.

upvoted 0 times

...

Judy

6 months ago

Okay, let me see here. The new servers were installed in a different subnet, so that could be causing some connectivity problems. I'll need to consider how that might impact the rollback process.

upvoted 0 times

...

Adelaide

6 months ago

I remember a practice question where we discussed the role of service architects, so maybe they play a key part here.

upvoted 0 times

...

Thurman

6 months ago

I feel slightly confused about the options. I thought the goal was more about reducing risk for shareholders, not necessarily removing their involvement in governance.

upvoted 0 times

...