200-201 Question #136: Real Exam Question with Answer & Explanation

Sign in or unlock 200-201 to reveal the answer and full explanation for question #136. The question stem and answer options stay visible for context.

Submitted by emma.c· Mar 6, 2026Host-Based Analysis

Question

Refer to the exhibit. An engineer is analyzing this Cuckoo Sandbox report for a PDF file that has been downloaded from an email. What is the state of this file?

Options

AThe file has an embedded executable and was matched by PEiD threat signatures for further
BThe file has an embedded non-Windows executable but no suspicious features are identified.
CThe file has an embedded Windows 32 executable and the Yara field lists suspicious features
DThe file was matched by PEiD threat signatures but no suspicious features are identified since

Unlock 200-201 to see the answer

You've previewed enough free 200-201 questions. Unlock 200-201 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock 200-201 - $49.99 / 30 days Sign in

Topics

#sandbox analysis#malware analysis#Cuckoo Sandbox#YARA rules

Full 200-201 Practice Browse All 200-201 Questions