Palo_Alto_Networks
SECOPS-PRO · Question #75
SECOPS-PRO Question #75: Real Exam Question with Answer & Explanation
Sign in or unlock SECOPS-PRO to reveal the answer and full explanation for question #75. The question stem and answer options stay visible for context.
Question
An incident response team is investigating a potential breach involving an internal server communicating with a suspicious external IP address. Initial checks on VirusTotal for the external IP yield no results. Upon further investigation, network telemetry suggests the communication pattern is highly unusual and indicative of command-and-control (C2) activity. The team needs to determine if this C2 traffic is associated with a known threat actor, understand their TTPs, and identify specific exploit methods. Which of the following distinct characteristics, when comparing WildFire, Unit 42, and VirusTotal, are most critical for the team to leverage in this situation? (Select all that apply)
Options
- AWildFire's ability to perform deep, proprietary behavioral analysis of submitted malware samples,
- BUnit 42's comprehensive, human-curated threat intelligence reports providing detailed adversary
- CVirusTotal's aggregated community intelligence, allowing for rapid lookup of known bad hashes
- DWildFire's automatic generation and distribution of new threat signatures to Palo Alto Networks
- EThe ability of VirusTotal to conduct real-time deep packet inspection on live network traffic to
Unlock SECOPS-PRO to see the answer
You've previewed enough free SECOPS-PRO questions. Unlock SECOPS-PRO for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.