Notifications
Clear all
Topic starter
During the forensic analysis of a compromised machine, a security analyst discovers some binaries that are exhibiting abnormal behaviors. After extracting the strings, the analyst finds unexpected content.
Which of the following is the NEXT step the analyst should take?
- A . Only allow whitelisted binaries to execute.
B. Run an antivirus against the binaries to check for malware.
C. Use file integrity monitoring to validate the digital signature.
D. Validate the binaries' hashes from a trusted source.
Suggested Answer: B
Posted : 14/02/2023 3:08 pm