350-701 Exam Dumps | A company recently discovered an attack propagating throughout their Windows network via a file named

<< Prev Question Next Question >>

Question 233/264

A company recently discovered an attack propagating throughout their Windows network via a file named abc428565580xyz exe The malicious file was uploaded to a Simple Custom Detection list in the AMP for Endpoints Portal and the currently applied policy for the Windows clients was updated to reference the detection list Verification testing scans on known infected systems shows that AMP for Endpoints is not detecting the presence of this file as an indicator of compromise What must be performed to ensure detection of the malicious file?

A. Upload the malicious file to the Blocked Application Control List

B. Use an Advanced Custom Detection List instead of a Simple Custom Detection List

C. Check the box in the policy configuration to send the file to Cisco Threat Grid for dynamic analysis

D. Upload the SHA-256 hash for the file to the Simple Custom Detection List

Question List (264q): Question 1: Which PKI enrollment method allows the user to separate auth...; Question 2: How does Cisco Advanced Phishing Protection protect users?...; Question 3: Which problem Is solved by deploying a multicontext firewall...; Question 4: A network administrator is modifying a remote access VPN on ...; Question 5: How does a cloud access security broker function?...; Question 6: What provides total management for mobile and PC including m...; Question 7: Which Cisco ASA Platform mode disables the threat detection ...; Question 8: Which characteristic is unique to a Cisco WSAv as compared t...; Question 9: Which two authentication protocols are supported by the Cisc...; Question 10: An engineer adds a custom detection policy to a Cisco AMP de...; Question 11: Which two key and block sizes are valid for AES? (Choose two...; Question 12: A company discovered an attack propagating through their net...; Question 13: In which two ways does a system administrator send web traff...; Question 14: Which two solutions help combat social engineering and phish...; Question 15: Which benefit does DMVPN provide over GETVPN?...; Question 16: What is a capability of Cisco ASA Netflow?...; Question 17: Which license is required for Cisco Security Intelligence to...; Question 18: An organization wants to improve its cybersecurity processes...; Question 19: An engineer is configuring a Cisco ESA and wants to control ...; Question 20: An engineer needs to add protection for data in transit and ...; Question 21: What is a benefit of flexible NetFlow records?...; Question 22: Refer to the exhibit. (Exhibit) Which command was used to ge...; Question 23: Which attack is preventable by Cisco ESA but not by the Cisc...; Question 24: An organization wants to provide visibility and to identify ...; Question 25: What is the purpose of a denial-of-service attack?...; Question 26: Which IPS engine detects ARP spoofing?...; Question 27: Which system facilitates deploying microsegmentation and mul...; Question 28: Refer to the exhibit. (Exhibit) Which command was used to di...; Question 29: What is a characteristic of Dynamic ARP Inspection?...; Question 30: Which Cisco network security device supports contextual awar...; Question 31: Which two aspects of the cloud PaaS model are managed by the...; Question 32: What is the difference between deceptive phishing and spear ...; Question 33: What are the two types of managed Intercloud Fabric deployme...; Question 34: A network engineer is deciding whether to use stateful or st...; Question 35: What is provided by the Secure Hash Algorithm in a VPN?...; Question 36: For which two conditions can an endpoint be checked using IS...; Question 37: A user has a device in the network that is receiving too man...; Question 38: Which MDM configuration provides scalability?...; Question 39: What is the target in a phishing attack?...; Question 40: Which CoA response code is sent if an authorization state is...; Question 41: An organization wants to secure users, data, and application...; Question 42: A security test performed on one of the applications shows t...; Question 43: Which Cisco Umbrella package supports selective proxy for In...; Question 44: A customer has various external HTTP resources available inc...; Question 45: Which statement about the configuration of Cisco ASA NetFlow...; Question 46: What limits communication between applications or containers...; Question 47: An organization has a Cisco ESA set up with policies and wou...; Question 48: Which Cisco Advanced Malware protection for Endpoints deploy...; Question 49: Based on the NIST 800-145 guide, which cloud architecture is...; Question 50: What is the Cisco API-based broker that helps reduce comprom...; Question 51: An administrator configures new authorization policies withi...; Question 52: Which Cisco security solution gives the most complete view o...; Question 53: Which two criteria must a certificate meet before the WSA us...; Question 54: An engineer is configuring Dropbox integration with Cisco Cl...; Question 55: Which ID store requires that a shadow user be created on Cis...; Question 56: A hacker initiated a social engineering attack and stole use...; Question 57: Which technology enables integration between Cisco ISE and o...; Question 58: An organization received a large amount of SPAM messages ove...; Question 59: Which algorithm provides asymmetric encryption?...; Question 60: Why is it important to patch endpoints consistently?...; Question 61: Which feature is leveraged by advanced antimalware capabilit...; Question 62: A network engineer is configuring DMVPN and entered the cryp...; Question 63: Which function is the primary function of Cisco AMP threat G...; Question 64: A large organization wants to deploy a security appliance in...; Question 65: (Exhibit) Refer to the exhibit. What is the result of using ...; Question 66: How does the Cisco WSA enforce bandwidth restrictions for we...; Question 67: When network telemetry is implemented, what is important to ...; Question 68: How does Cisco Workload Optimization portion of the network ...; Question 69: Which metric is used by the monitoring agent to collect and ...; Question 70: Drag and drop the cloud security assessment components from ...; Question 71: Which posture assessment requirement provides options to the...; Question 72: In which form of attack is alternate encoding, such as hexad...; Question 73: Which security product enables administrators to deploy Kube...; Question 74: Which two are valid suppression types on a Cisco Next Genera...; Question 75: An engineer is configuring IPsec VPN and needs an authentica...; Question 76: Which encryption algorithm provides highly secure VPN commun...; Question 77: An engineer wants to generate NetFlow records on traffic tra...; Question 78: (Exhibit) Refer to the exhibit. What does this Python script...; Question 79: What is the purpose of joining Cisco WSAs to an appliance gr...; Question 80: What is the role of an endpoint in protecting a user from a ...; Question 81: Which functions of an SDN architecture require southbound AP...; Question 82: Which method must be used to connect Cisco Secure Workload t...; Question 83: Which protocol provides the strongest throughput performance...; Question 84: An organization wants to reduce their attach surface for clo...; Question 85: Refer to the exhibit. (Exhibit) What will happen when this P...; Question 86: Which Cisco solution provides a comprehensive view of Intern...; Question 87: What is a difference between GRE over IPsec and IPsec with c...; Question 88: An engineer is implementing NTP authentication within their ...; Question 89: What are two benefits of Flexible NetFlow records? (Choose t...; Question 90: Refer to the exhibit. (Exhibit) A network engineer is testin...; Question 91: Why would a user choose an on-premises ESA versus the CES so...; Question 92: What are two recommended approaches to stop DNS tunneling fo...; Question 93: Which feature requires that network telemetry be enabled?...; Question 94: What is the concept of Cl/CD pipelining?...; Question 95: An organization is selecting a cloud architecture and does n...; Question 96: Where are individual sites specified to be blacklisted in Ci...; Question 97: Which two commands are required when configuring a flow-expo...; Question 98: (Exhibit) Refer to the exhibit. All servers are in the same ...; Question 99: What is a benefit of using Cisco Tetration?...; Question 100: Which threat involves software being used to gain unauthoriz...; Question 101: What is the purpose of a NetFlow version 9 template record?...; Question 102: An organization has two machines hosting web applications. M...; Question 103: Why is it important to implement MFA inside of an organizati...; Question 104: Which technology provides a combination of endpoint protecti...; Question 105: An administrator is adding a new switch onto the network and...; Question 106: What are two characteristics of the RESTful architecture use...; Question 107: What are two Trojan malware attacks? (Choose two)...; Question 108: Which benefit does endpoint security provide the overall sec...; Question 109: What is the purpose of CA in a PKI?...; Question 110: What is the process In DevSecOps where all changes In the ce...; Question 111: Which policy is used to capture host information on the Cisc...; Question 112: What is an attribute of the DevSecOps process?...; Question 113: What are two list types within AMP for Endpoints Outbreak Co...; Question 114: What is the term for when an endpoint is associated to a pro...; Question 115: An MDM provides which two advantages to an organization with...; Question 116: Which two prevention techniques are used to mitigate SQL inj...; Question 117: Which two services must remain as on-premises equipment when...; Question 118: Which service allows a user export application usage and per...; Question 119: Which RADIUS feature provides a mechanism to change the AAA ...; Question 120: Which two deployment modes does the Cisco ASA FirePower modu...; Question 121: An organization uses Cisco FMC to centrally manage multiple ...; Question 122: A network administrator needs to find out what assets curren...; Question 123: An organization must add new firewalls to its infrastructure...; Question 124: An administrator is establishing a new site-to-site VPN conn...; Question 125: An organization is using Cisco Firepower and Cisco Meraki MX...; Question 126: II An engineer musi set up 200 new laptops on a network and ...; Question 127: What is the primary benefit of deploying an ESA in hybrid mo...; Question 128: What is a key difference between Cisco Firepower and Cisco A...; Question 129: Which technology provides the benefit of Layer 3 through Lay...; Question 130: What are two features of NetFlow flow monitoring? (Choose tw...; Question 131: Which VPN technology can support a multivendor environment a...; Question 132: Which two risks is a company vulnerable to if it does not ha...; Question 133: An engineer is configuring Cisco WSA and needs to enable a s...; Question 134: With regard to RFC 5176 compliance, how many IETF attributes...; Question 135: Which Cisco platform provides an agentless solution to provi...; Question 136: Which action controls the amount of URI text that is stored ...; Question 137: What are two reasons for implementing a multifactor authenti...; Question 138: What is a functional difference between Cisco AMP for Endpoi...; Question 139: What features does Cisco FTDv provide over ASAv?...; Question 140: What are two facts about WSA HTTP proxy configuration with a...; Question 141: An engineer is configuring AMP for endpoints and wants to bl...; Question 142: Which group within Cisco writes and publishes a weekly newsl...; Question 143: An engineer is trying to decide between using L2TP or GRE ov...; Question 144: What is the purpose of the My Devices Portal in a Cisco ISE ...; Question 145: Which security solution protects users leveraging DNS-layer ...; Question 146: Which system performs compliance checks and remote wiping?...; Question 147: An engineer used a posture check on a Microsoft Windows endp...; Question 148: Which threat intelligence standard contains malware hashes?...; Question 149: What are two ways that Cisco Container Platform provides val...; Question 150: An engineer is configuring device-hardening on a router in o...; Question 151: What can be integrated with Cisco Threat Intelligence Direct...; Question 152: Refer to the exhibit. (Exhibit) A network administrator conf...; Question 153: Which Cisco ASA deployment model is used to filter traffic b...; Question 154: What is a feature of the open platform capabilities of Cisco...; Question 155: An engineer must force an endpoint to re-authenticate an alr...; Question 156: A network administrator is configuring a role in an access c...; Question 157: Which public cloud provider supports the Cisco Next Generati...; Question 158: Refer to the exhibit. (Exhibit) What does the API do when co...; Question 159: A customer has various external HTTP resources available inc...; Question 160: A network engineer must migrate a Cisco WSA virtual applianc...; Question 161: Which Cisco platform ensures that machines that connect to o...; Question 162: Which two fields are defined in the NetFlow flow? (Choose tw...; Question 163: What is the primary difference between an Endpoint Protectio...; Question 164: What is the result of running the crypto isakmp key ciscXXXX...; Question 165: What is a characteristic of a bridge group in ASA Firewall t...; Question 166: An engineer needs to configure an access control policy rule...; Question 167: Which two configurations must be made on Cisco ISE and on Ci...; Question 168: (Exhibit) Refer to the exhibit. What is the result of the Py...; Question 169: Refer to the exhibit, (Exhibit) which command results in the...; Question 170: Refer to the exhibit. (Exhibit) Which statement about the au...; Question 171: An administrator configures a new destination list in Cisco ...; Question 172: When choosing an algorithm to us, what should be considered ...; Question 173: Which two descriptions of AES encryption are true? (Choose t...; Question 174: Which product allows Cisco FMC to push security intelligence...; Question 175: An engineer needs behavioral analysis to detect malicious ac...; Question 176: An engineer is adding a Cisco DUO solution to the current TA...; Question 177: Which option is the main function of Cisco Firepower impact ...; Question 178: Refer to the exhibit. (Exhibit) What is a result of the conf...; Question 179: Which type of data does the Cisco Stealthwatch system collec...; Question 180: Which direction do attackers encode data in DNS requests dur...; Question 181: Which baseline form of telemetry is recommended for network ...; Question 182: Refer to the exhibit. (Exhibit) What are two indications of ...; Question 183: Which Cisco security solution integrates with cloud applicat...; Question 184: Which technology limits communication between nodes on the s...; Question 185: Which statement describes a serverless application?...; Question 186: What are two benefits of using Cisco Duo as an MFA solution?...; Question 187: In which situation should an Endpoint Detection and Response...; Question 188: What is a characteristic of Firepower NGIPS inline deploymen...; Question 189: Why is it important for the organization to have an endpoint...; Question 190: Which command is used to log all events to a destination col...; Question 191: How does Cisco Umbrella archive logs to an enterprise owned ...; Question 192: What is the recommendation in a zero-trust model before gran...; Question 193: What is a benefit of using GET VPN over FlexVPN within a VPN...; Question 194: Which exfiltration method does an attacker use to hide and e...; Question 195: Which type of algorithm provides the highest level of protec...; Question 196: When NetFlow is applied to an interface, which component cre...; Question 197: Which action must be taken in the AMP for Endpoints console ...; Question 198: Which feature within Cisco ISE verifies the compliance of an...; Question 199: What is a difference between Cisco AMP for Endpoints and Cis...; Question 200: Refer to the exhibit. (Exhibit) What will occur when this de...; Question 201: Which Cisco security solution protects remote users against ...; Question 202: What is a commonality between DMVPN and FlexVPN technologies...; Question 203: Refer to the exhibit. (Exhibit) Refer to the exhibit. A Cisc...; Question 204: An engineer needs a solution for TACACS+ authentication and ...; Question 205: Refer to the exhibit. (Exhibit) What is the function of the ...; Question 206: An engineer is implementing Cisco CES in an existing Microso...; Question 207: An engineer is configuring their router to send NetfFow data...; Question 208: Drag and drop the Firepower Next Generation Intrusion Preven...; Question 209: Which Cisco product provides proactive endpoint protection a...; Question 210: Which type of encryption uses a public key and private key?...; Question 211: What is the difference between a vulnerability and an exploi...; Question 212: What does the Cloudlock Apps Firewall do to mitigate securit...; Question 213: Which two parameters are used to prevent a data breach in th...; Question 214: Which type of protection encrypts RSA keys when they are exp...; Question 215: An engineer needs to configure a Cisco Secure Email Gateway ...; Question 216: Refer to the exhibit. (Exhibit) Which configuration item mak...; Question 217: A network engineer is trying to figure out whether FlexVPN o...; Question 218: Drag and drop the descriptions from the left onto the encryp...; Question 219: Drag and drop the capabilities of Cisco Firepower versus Cis...; Question 220: Which Cisco command enables authentication, authorization, a...; Question 221: Which Dos attack uses fragmented packets to crash a target m...; Question 222: A company is experiencing exfiltration of credit card number...; Question 223: What are two Detection and Analytics Engines of Cognitive Th...; Question 224: An engineer is configuring Cisco WSA and needs to deploy it ...; Question 225: Which term describes when the Cisco Firepower downloads thre...; Question 226: Which capability is exclusive to a Cisco AMP public cloud in...; Question 227: Which two capabilities of Integration APIs are utilized with...; Question 228: An organization uses Cisco FMC to centrally manage multiple ...; Question 229: An engineer is trying to decide whether to use Cisco Umbrell...; Question 230: Which category includes DoS Attacks?...; Question 231: Which statement describes a traffic profile on a Cisco Next ...; Question 232: Which type of data exfiltration technique encodes data in ou...; Question 233: A company recently discovered an attack propagating througho...; Question 234: Refer to the exhibit. (Exhibit) An engineer configured wired...; Question 235: Which Cisco solution does Cisco Umbrella integrate with to d...; Question 236: An engineer must modify a policy to block specific addresses...; Question 237: On Cisco Firepower Management Center, which policy is used t...; Question 238: Which two application layer preprocessors are used by Firepo...; Question 239: What are two ways a network administrator transparently iden...; Question 240: Which feature is used in a push model to allow for session i...; Question 241: An engineer enabled SSL decryption for Cisco Umbrella intell...; Question 242: A company has 5000 Windows users on its campus. Which two pr...; Question 243: A Cisco Firepower administrator needs to configure a rule to...; Question 244: When wired 802.1X authentication is implemented, which two c...; Question 245: When web policies are configured in Cisco Umbrella, what pro...; Question 246: An organization configures Cisco Umbrella to be used for its...; Question 247: Refer to the exhibit. (Exhibit) Consider that any feature of...; Question 248: Which open source tool does Cisco use to create graphical vi...; Question 249: What is the default action before identifying the URL during...; Question 250: Drag and drop the suspicious patterns for the Cisco Tetratio...; Question 251: Which parameter is required when configuring a Netflow expor...; Question 252: Which Cisco solution extends network visibility, threat dete...; Question 253: Which method of attack is used by a hacker to send malicious...; Question 254: A network engineer has entered the snmp-server user andy myv...; Question 255: Which information is required when adding a device to Firepo...; Question 256: What is a function of Cisco AMP for Endpoints?...; Question 257: An engineer configures new features within the Cisco Umbrell...; Question 258: Which solution should be leveraged for secure access of a CI...; Question 259: What is a benefit of using Cisco FMC over Cisco ASDM?...; Question 260: Drag and drop the descriptions from the left onto the correc...; Question 261: What does endpoint isolation in Cisco AMP for Endpoints secu...; Question 262: Which two capabilities does an MDM provide? (Choose two.)...; Question 263: In which type of attack does the attacker insert their machi...; Question 264: Which Cisco Firewall solution requires zone definition?...

Question 233/264

LEAVE A REPLY

Download PDF File