CrowdStrike
CCFA-200B · Question #102
CCFA-200B Question #102: Real Exam Question with Answer & Explanation
Sign in or unlock CCFA-200B to reveal the answer and full explanation for question #102. The question stem and answer options stay visible for context.
Question
You have determined that you have numerous Machine Learning detections in your environment that are false positives. They are caused by a single binary that was custom written by a vendor for you and that binary is running on many endpoints. What is the best way to prevent these in the future?
Options
- AContact support and request that they modify the Machine Learning settings to no longer include
- BUsing IOC Management, add the hash of the binary in question and set the action to "Allow"
- CUsing IOC Management, add the hash of the binary in question and set the action to "Block, hide
- DUsing IOC Management, add the hash of the binary in question and set the action to "No Action"
Unlock CCFA-200B to see the answer
You've previewed enough free CCFA-200B questions. Unlock CCFA-200B for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.