Which of the following can be inferred from this activity?

CS0-002 V2

Last Post by Ezequiel 1 year ago

1 Posts

1 Users

0 Likes

126 Views

RSS

Ezequiel

(@ozolinsezequiel)

Posts: 701

Noble Member

Topic starter

An analyst identifies multiple instances of node-to-node communication between several endpoints within the 10.200.2.0/24 network and a user machine at the IP address 10.200.2.5. This user machine at the IP address 10.200.2.5 is also identified as initiating outbound communication during atypical business hours with several IP addresses that have recently appeared on threat feeds.

Which of the following can be inferred from this activity?

A. 10.200.2.0/24 is infected with ransomware.

B. 10.200.2.0/24 is not routable address space.

C. 10.200.2.5 is a rogue endpoint.

D. 10.200.2.5 is exfiltrating datA.

Show Answer Hide Answer

Suggested Answer: D

Posted : 14/02/2023 2:19 am

Topic Tags

CompTIA CySA+

Latest CS0-002 V2 Dumps Valid Version

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download PDF

Forum Jump:

Previous Topic

Next Topic