CompTIA
CAS-003 · Question #500
CAS-003 Question #500: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-003 to reveal the answer and full explanation for question #500. The question stem and answer options stay visible for context.
Enterprise Security Operations
Question
An analyst is investigating behavior on a corporate-owned, corporate-managed mobile device with application whitelisting enabled, based on a name string. The employee to whom the device is assigned reports the approved email client is displaying warning messages that can launch browser windows and is adding unrecognized email addresses to the "compose" window. Which of the following would provide the analyst the BEST chance of understanding and characterizing the malicious behavior?
Options
- AReverse engineer the application binary.
- BPerform static code analysis on the source code.
- CAnalyze the device firmware via the JTAG interface.
- DChange to a whitelist that uses cryptographic hashing.
- EPenetration test the mobile application.
Unlock CAS-003 to see the answer
You've previewed enough free CAS-003 questions. Unlock CAS-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#reverse engineering#mobile security#malware analysis#application whitelisting