PCDRA · Question #47
PCDRA Question #47: Real Exam Question with Answer & Explanation
The correct answer is B: Quarantine. Quarantine is the function that moves a suspicious or malicious file from its original location on a local or removable drive to a secure, protected folder where it cannot be executed. This isolates the threat while preserving the file for investigation. It differs from deletion,
Question
Which function describes the removal of a specific file from its location on a local or removable drive to a protected folder to prevent the file from being executed?
Options
- ASearch & destroy
- BQuarantine
- CIsolation
- DFlag for removal
Explanation
Quarantine is the function that moves a suspicious or malicious file from its original location on a local or removable drive to a secure, protected folder where it cannot be executed. This isolates the threat while preserving the file for investigation. It differs from deletion, which permanently removes the file. 'Isolation' (C) refers to network isolation of an endpoint, cutting it off from the network. 'Search & destroy' (A) and 'Flag for removal' (D) are not standard Cortex XDR functions.
Topics
Community Discussion
No community discussion yet for this question.