U.S. Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Palo Alto Networks PSE-Endpoint-Associate Exam - Topic 1 Question 76 Discussion

Which two statements about file hashes are true? (Choose two.)
A) WildFire populates ESM Server's cache with hashes of files known from other customers to be malicious. and C) ESM Servers send hashes of application data files to WildFire.
B) The Traps agent caches the hashes of executable files for which it has verdicts.
D) ESM Servers send hashes of executable files to WildFire.

Palo Alto Networks PSE-Endpoint-Associate Exam - Topic 1 Question 76 Discussion

Actual exam question for Palo Alto Networks's PSE-Endpoint-Associate exam
Question #: 76
Topic #: 1
[All PSE-Endpoint-Associate Questions]

Which two statements about file hashes are true? (Choose two.)

Show Suggested Answer Hide Answer
Suggested Answer: A, C

Contribute your Thoughts:

0/2000 characters
Wynell
7 months ago
I thought WildFire only dealt with malware, not app data?
upvoted 0 times
...
Vashti
7 months ago
D is definitely true, I've seen that in action.
upvoted 0 times
...
Ming
7 months ago
Wait, are we sure about C? Sounds off.
upvoted 0 times
...
Kiley
8 months ago
I think B is correct too, makes sense.
upvoted 0 times
...
Giuseppe
8 months ago
A is true, WildFire does that.
upvoted 0 times
...
Willodean
8 months ago
I might be mixing things up, but I think WildFire does get hashes from ESM Servers, though I can't remember the details clearly.
upvoted 0 times
...
Corrie
8 months ago
I feel like ESM Servers sending hashes to WildFire was mentioned, but I can't recall if it's specifically for application data or executables.
upvoted 0 times
...
Val
8 months ago
I think the Traps agent definitely caches hashes for executable files, that sounds familiar from our practice questions.
upvoted 0 times
...
Talia
8 months ago
I remember something about WildFire and how it deals with malicious files, but I'm not sure if it populates the ESM Server's cache directly.
upvoted 0 times
...
Elly
8 months ago
Based on my understanding, the key things to focus on are the types of files (executable vs. application data) and where the hashes are being sent or cached. I think I've got a good handle on this now.
upvoted 0 times
...
Yong
8 months ago
I'm a bit confused by the terminology here. Can someone explain what "WildFire" and "ESM Server" refer to in the context of this question?
upvoted 0 times
...
Una
8 months ago
Okay, let me think this through. The question is asking which two statements are true, so I'll need to carefully evaluate each one.
upvoted 0 times
...
Oretha
9 months ago
This question seems straightforward, but I want to make sure I understand the key differences between the file hash-related statements before selecting my answers.
upvoted 0 times
...
Myong
1 year ago
I'm pretty sure C and D are the right answers. ESM servers sending hashes of applications and executables to WildFire allows for comprehensive malware analysis and detection.
upvoted 0 times
Tonja
1 year ago
The Traps agent caching hashes of executable files is also crucial for security.
upvoted 0 times
...
Mohammad
1 year ago
Yes, WildFire populates ESM Server's cache with hashes of files known to be malicious.
upvoted 0 times
...
Paul
1 year ago
ESM Servers sending hashes of application data files to WildFire does sound important.
upvoted 0 times
...
Edelmira
1 year ago
I think you're right, C and D make sense for file hashes.
upvoted 0 times
...
...
Fletcher
1 year ago
I'm not sure about A, but I think B is also true. The Traps agent caches hashes of executable files for which it has verdicts.
upvoted 0 times
...
Lavonne
1 year ago
I agree with you, Casandra. A and D make sense because ESM Servers send hashes of executable files to WildFire.
upvoted 0 times
...
Fredric
1 year ago
A and B seem to be the correct options. The Traps agent caching hashes of executable files makes sense, and WildFire populating ESM's cache with known malicious hashes is a great way to leverage crowd-sourced intelligence.
upvoted 0 times
Teri
1 year ago
Exactly, A and B are the two true statements about file hashes. Good job on identifying them!
upvoted 0 times
...
Rochell
1 year ago
So, ESM Servers do send hashes of executable files to WildFire. That's one of the correct statements.
upvoted 0 times
...
Tony
1 year ago
I agree, B is also true. The Traps agent caches hashes of executable files it has verdicts on.
upvoted 0 times
...
Eden
1 year ago
Yes, A is correct. WildFire does populate ESM Server's cache with known malicious file hashes.
upvoted 0 times
...
...
Casandra
1 year ago
I think A and D are true.
upvoted 0 times
...

Save Cancel