nerdexam
ExamsCISSPQuestions#400
(ISC)2(ISC)2

CISSP · Question #400

CISSP Question #400: Real Exam Question with Answer & Explanation

Sign in or unlock CISSP to reveal the answer and full explanation for question #400. The question stem and answer options stay visible for context.

Submitted by rania.sa· Mar 5, 2026Security Operations

Question

Which of the following is the BEST approach for a forensic examiner to obtain the greatest amount of relevant information form malicious software?

Options

  • AAnalyze the behavior of the program.
  • BExamine the file properties and permissions.
  • CReview the code to identify its origin.
  • DAnalyze the logs generated by the software.

Unlock CISSP to see the answer

You've previewed enough free CISSP questions. Unlock CISSP for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock CISSP - $49.99 / 30 daysSign in

Topics

#Forensic analysis#Malware analysis#Behavioral analysis#Incident response
Full CISSP PracticeBrowse All CISSP Questions