Palo Alto Networks Exam PCCSE Topic 1 Question 103 Discussion

Actual exam question for Palo Alto Networks's PCCSE exam

Question #: 103
Topic #: 1

A customer is reviewing Container audits, and an audit has identified a cryptominer attack. Which three options could have generated this audit? (Choose three.)

AThe value of the mined currency exceeds $100.

BHigh CPU usage over time for the container is detected.

CCommon cryptominer process name was found.

DThe mined currency is associated with a user token.

ECommon cryptominer port usage was found.

Show Suggested Answer

Suggested Answer: B, C, E

In the case of identifying a cryptominer attack through container audits, the options that could have generated this audit include B. High CPU usage over time for the container is detected, which is a common indicator of cryptomining activity as it consumes significant computational resources, C. Common cryptominer process name was found, which directly indicates the presence of cryptomining based on known malicious processes, and E. Common cryptominer port usage was found, suggesting cryptomining activity based on network behavior typical of such attacks.

by Shawnda at Jul 08, 2025, 11:12 PM

Limited Time Offer

25%

Off

Get Premium PCCSE Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Bambi

12 hours ago

B, C, and E for sure! Cryptominers are notorious for spiking CPU usage and leaving telltale process names and port usage. Gotta catch those sneaky miners!

upvoted 0 times

...