Refer to the exhibit.

What is occurring within the exhibit?

• A.Source 10.1.21.101 sends HTTP requests with the size of 302 kb.
• B.Host 209.141.51.196 redirects the client request from /Lk9tdZ to /files/1.bin.
• C.Host 209.141.51.196 redirects the client request to port 49723.
• D.Source 10.1.21.101 is communicating with 209.141.51.196 over an encrypted channel.

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit.

Which two actions should be taken as a result of this information? (Choose two.)

• A.Block any URLs in received emails.
• B.Blacklist IPs 164.90.168.78 and 199.19.224.83.
• C.Block any access to and from domain apponline-8473.xyz.
• D.Block any malicious activity with xfe-threat-score-10.
• E.Block all emails sent from malicious domain apponline-8473.xyz.

Comment: *

Name: *

Email: *

Verification: *

What are two features of Cisco Secure Endpoint? (Choose two.)

• A.file trajectory
• B.rogue wireless detection
• C.Orbital Advanced Search
• D.web content filtering
• E.full disk encryption

Comment: *

Name: *

Email: *

Verification: *

Which tool conducts memory analysis?

• A.MemDump
• B.Sysinternals Autoruns
• C.Volatility
• D.Memoryze

Comment: *

Name: *

Email: *

Verification: *

A security team received an alert of suspicious activity on a user's Internet browser. The user's anti-virus software indicated that the file attempted to create a fake recycle bin folder and connect to an external IP address. Which two actions should be taken by the security analyst with the executable file for further analysis? (Choose two.)

• A.Network Exit Localization in Cisco Secure Malware Analytics (Threat Grid).
• B.Analyze the TCP/IP Streams in Cisco Secure Malware Analytics (Threat Grid).
• C.Evaluate the behavioral indicators in Cisco Secure Malware Analytics (Threat Grid).
• D.Analyze the Magic File type in Cisco Umbrella.
• E.Evaluate the process activity in Cisco Umbrella.

Comment: *

Name: *

Email: *

Verification: *