CS0-003 Question #473: Real Exam Question with Answer & Explanation

The correct answer is D: Use a local sandbox in a microsegmented environment. To safely analyze malware while avoiding unintended disclosure of company information, it is best to use a local sandbox in a microsegmented environment. A local sandbox provides a secure, isolated environment for malware analysis without exposing sensitive data outside the organ

Submitted by ravi_2018· Mar 6, 2026Incident Response and Management

Question

An employee received a phishing email that contained malware targeting the company. Which of the following is the best way for a security analyst to get more details about the malware and avoid disclosing information?

Options

AUpload the malware to the VirusTotal website
BShare the malware with the EDR provider
CHire an external consultant to perform the analysis
DUse a local sandbox in a microsegmented environment

Explanation

To safely analyze malware while avoiding unintended disclosure of company information, it is best to use a local sandbox in a microsegmented environment. A local sandbox provides a secure, isolated environment for malware analysis without exposing sensitive data outside the organization. Microsegmentation enhances security by further isolating the sandbox from the network, preventing lateral movement if the malware attempts to communicate externally.

Topics

#malware analysis#sandboxing#threat intelligence#incident containment

Community Discussion

No community discussion yet for this question.

Full CS0-003 Practice Browse All CS0-003 Questions