Palo_Alto_Networks
SECOPS-PRO · Question #50
SECOPS-PRO Question #50: Real Exam Question with Answer & Explanation
Sign in or unlock SECOPS-PRO to reveal the answer and full explanation for question #50. The question stem and answer options stay visible for context.
Question
Which task should a threat hunter include in the investigation when a Cortex XDR incident contains alertsout a malicious process?
Options
- AImmediately isolate the endpoint and delete the identified file.
- BSearch for the SHA256 file hash on other endpoints in the environment.
- CAdd the SHA256 file hash to the Cortex XDR global block list.
- DDisable the account of the user responsible for initiating the process.
Unlock SECOPS-PRO to see the answer
You've previewed enough free SECOPS-PRO questions. Unlock SECOPS-PRO for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.