Palo_Alto_Networks
SECOPS-PRO · Question #3
SECOPS-PRO Question #3: Real Exam Question with Answer & Explanation
The correct answer is C. Unknown. Conflicting threat feed verdicts (malicious vs. benign) result in an "Unknown" verdict in Cortex XSOAR until further analysis resolves the conflict.
Question
A file hash is evaluated a Cortex XSOAR by using two unique threat feeds: - VirusTotal feed (rating of B- usually reliable) and the file verdict is malicious - AlienVault feed (rating of B- usually reliable) and the file verdict is benign What is the file verdict in XSOAR?
Options
- ABenign
- BMalicious
- CUnknown
- DSuspicious
Explanation
Conflicting threat feed verdicts (malicious vs. benign) result in an "Unknown" verdict in Cortex XSOAR until further analysis resolves the conflict.
Community Discussion
No community discussion yet for this question.