Malware is currently spreading through an organization's network. An Incident Responder sees some detections in SEP, but there is NOT an apparent relationship between them. How should the responder look for the source of the infection using ATP?
A) Check for the file hash for each detection
B) Isolate a system and collect a sample
C) Submit the hash to Virus Total
D) Check of the threats are downloaded from the same domain or IP by looking at incidents
Correct Answer:
Verified
Q92: Which National Institute of Standards and Technology
Q93: An Incident Responder launches a search from
Q94: An Incident Responder discovers an incident where
Q95: Which final steps should an Incident Responder
Q96: Which two actions can an Incident Responder
Q98: Which default port does ATP use to
Q99: A medium-sized organization with 10,000 users at
Q100: What is the role of Vantage within
Q101: An Incident Responder added a file's MD5
Q102: During a recent virus outbreak, an Incident
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents