nerdexam
Exams300-215Questions#67
CiscoCisco

300-215 · Question #67

300-215 Question #67: Real Exam Question with Answer & Explanation

The correct answer is B: Blacklist IPs 164.90.168.78 and 199.19.224.83.. The STIX indicator’s pattern explicitly calls out two IPv4 addresses and the malicious domain. - Blacklist IPs 164.90.168.78 and 199.19.224.83. - Block all traffic to/from apponline-8473.xyz. These actions directly enforce the indicator’s contents to prevent access to the phishin

Submitted by tyler.j· Mar 6, 2026Incident Response Techniques

Question

Refer to the exhibit. Which two actions should be taken as a result of this information? (Choose two.)

Options

  • ABlock any URLs in received emails.
  • BBlacklist IPs 164.90.168.78 and 199.19.224.83.
  • CBlock any access to and from domain apponline-8473.xyz.
  • DBlock any malicious activity with xfe-threat-score-10.
  • EBlock all emails sent from malicious domain apponline-8473.xyz.

Explanation

The STIX indicator’s pattern explicitly calls out two IPv4 addresses and the malicious domain. - Blacklist IPs 164.90.168.78 and 199.19.224.83. - Block all traffic to/from apponline-8473.xyz. These actions directly enforce the indicator’s contents to prevent access to the phishing

Topics

#threat intelligence#blacklist#domain blocking#IP blocking#containment

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-215 PracticeBrowse All 300-215 Questions