Cisco 300-215 Quiz 2 Topic 8 Questions 6-10

Question: 1

Refer to the exhibit.

q1_300-215

What is the IOC threat and URL in this STIX JSON snippet?

Amalware; 'http://x4z9arb.cn/4712/'

Bmalware; x4z9arb backdoor

Cx4z9arb backdoor; http://x4z9arb.cn/4712/

Dmalware; malware--162d917e-766f-4611-b5d6-652791454fca

Estix; 'http://x4z9arb.cn/4712/'

Show Answer

Question: 2

Refer to the exhibit.

q2_300-215

According to the Wireshark output, what are two indicators of compromise for detecting an Emotet malware download? (Choose two.)

ADomain name:iraniansk.com

BServer: nginx

CHash value: 5f31ab113af08=1597090577

Dfilename= ''Fy.exe''

EContent-Type: application/octet-stream

Show Answer

Question: 3

Which scripts will search a log file for the IP address of 192.168.100.100 and create an output file named parsed_host.log while printing results to the console?

q3_300-215

AOption A

BOption B

COption C

DOption D

Show Answer

Question: 4

Refer to the exhibit.

q4_300-215

What is the IOC threat and URL in this STIX JSON snippet?

Amalware; 'http://x4z9arb.cn/4712/'

Bmalware; x4z9arb backdoor

Cx4z9arb backdoor; http://x4z9arb.cn/4712/

Dmalware; malware--162d917e-766f-4611-b5d6-652791454fca

Estix; 'http://x4z9arb.cn/4712/'

Show Answer

Question: 5

An ''unknown error code'' is appearing on an ESXi host during authentication. An engineer checks the authentication logs but is unable to identify the issue. Analysis of the vCenter agent logs shows no connectivity errors. What is the next log file the engineer should check to continue troubleshooting this error?

A/var/log/syslog.log

B/var/log/vmksummary.log

Cvar/log/shell.log

Dvar/log/general/log

Show Answer

Refer to the exhibit.
What is the IOC threat and URL in this STIX JSON snippet?

Refer to the exhibit.
According to the Wireshark output, what are two indicators of compromise for detecting an Emotet malware download? (Choose two.)

Which scripts will search a log file for the IP address of 192.168.100.100 and create an output file named parsed_host.log while printing results to the console?

Refer to the exhibit.
What is the IOC threat and URL in this STIX JSON snippet?

Cisco 300-215 Quiz:2 Topic:8 Questions:6-10

Refer to the exhibit.What is the IOC threat and URL in this STIX JSON snippet?

Refer to the exhibit.According to the Wireshark output, what are two indicators of compromise for detecting an Emotet malware download? (Choose two.)

Which scripts will search a log file for the IP address of 192.168.100.100 and create an output file named parsed_host.log while printing results to the console?

Refer to the exhibit.What is the IOC threat and URL in this STIX JSON snippet?

Cisco 300-215 Quiz:2 Topic:8 Questions:6-10

Refer to the exhibit.
What is the IOC threat and URL in this STIX JSON snippet?

Refer to the exhibit.
According to the Wireshark output, what are two indicators of compromise for detecting an Emotet malware download? (Choose two.)

Refer to the exhibit.
What is the IOC threat and URL in this STIX JSON snippet?