CrowdStrike
CCFH-202B · Question #42
CCFH-202B Question #42: Real Exam Question with Answer & Explanation
Sign in or unlock CCFH-202B to reveal the answer and full explanation for question #42. The question stem and answer options stay visible for context.
Question
Which of the following is an example of a Falcon threat hunting lead?
Options
- AA routine threat hunt query showing process executions of single letter filename (e.g., a.exe) from
- BSecurity appliance logs showing potentially bad traffic to an unknown external IP address
- CA help desk ticket for a user clicking on a link in an email causing their machine to become
- DAn external report describing a unique 5 character file extension for ransomware encrypted files
Unlock CCFH-202B to see the answer
You've previewed enough free CCFH-202B questions. Unlock CCFH-202B for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.