Cisco
350-701 · Question #574
350-701 Question #574: Real Exam Question with Answer & Explanation
Sign in or unlock 350-701 to reveal the answer and full explanation for question #574. The question stem and answer options stay visible for context.
Submitted by haruto_sh· Mar 30, 2026Endpoint Security and Visibility
Question
A company recently discovered an attack propagating throughout their Windows network via a file named abc428565580xyz exe. The malicious file was uploaded to a Simple Custom Detection list in the AMP for Endpoints Portal and the currently applied policy for the Windows clients was updated to reference the detection list. Verification testing scans on known infected systems shows that AMP for Endpoints is not detecting the presence of this file as an indicator of compromise. What must be performed to ensure detection of the malicious file?
Options
- AUpload the malicious file to the Blocked Application Control List
- BUse an Advanced Custom Detection List instead of a Simple Custom Detection List
- CCheck the box in the policy configuration to send the file to Cisco Threat Grid for dynamic
- DUpload the SHA-256 hash for the file to the Simple Custom Detection List
Unlock 350-701 to see the answer
You've previewed enough free 350-701 questions. Unlock 350-701 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#Cisco AMP for Endpoints#Custom detections#Application control#Malware detection