CompTIACompTIA
CS0-003 · Question #151
CS0-003 Question #151: Real Exam Question with Answer & Explanation
The correct answer is D: nslookup accountfix-office365.com. A tracert would not help here on the investigation. Only a Lookup to know the IP would help.
Submitted by dimitri_ru· Mar 6, 2026Incident Response and Management
Question
A security analyst is investigating a reported phishing attempt that was received by many users throughout the company. The text of one of the emails is shown below: Due to the size of the company and the high storage requirements, the company does not log DNS requests or perform packet captures of network traffic, but it does log network flow data. Which of the following commands will the analyst most likely execute NEXT?
Options
- Atelnet office365.com 25
- Btracert 122.167.40.119
- Dnslookup accountfix-office365.com
Explanation
A tracert would not help here on the investigation. Only a Lookup to know the IP would help.
Topics
#phishing investigation#DNS lookup#threat intelligence gathering#incident response tools
Community Discussion
No community discussion yet for this question.