CiscoCisco
300-215 · Question #4
300-215 Question #4: Real Exam Question with Answer & Explanation
Sign in or unlock 300-215 to reveal the answer and full explanation for question #4. The question stem and answer options stay visible for context.
Submitted by alyssa_d· Mar 6, 2026Cloud Security Operations & Incident Response
Question
A security team received an alert of suspicious activity on a user's Internet browser. The user's anti- virus software indicated that the file attempted to create a fake recycle bin folder and connect to an external IP address. Which two actions should be taken by the security analyst with the executable file for further analysis? (Choose two.)
Options
- AEvaluate the process activity in Cisco Umbrella.
- BAnalyze the TCP/IP Streams in Cisco Secure Malware Analytics (Threat Grid).
- CEvaluate the behavioral indicators in Cisco Secure Malware Analytics (Threat Grid).
- DAnalyze the Magic File type in Cisco Umbrella.
- ENetwork Exit Localization in Cisco Secure Malware Analytics (Threat Grid).
Unlock 300-215 to see the answer
You've previewed enough free 300-215 questions. Unlock 300-215 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#Malware analysis#Incident investigation#Threat Grid#Behavioral analysis