CompTIA Study Materials
AWS Study Materials
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA CySA+ CS0-003 Practice Question

During an investigation, a cybersecurity analyst needs to verify if a suspicious executable is a piece of known malware. The file does not trigger any antivirus alerts, and initial scans return no conclusive results. Which of the following methods should the analyst use to determine if the file is malicious?

  • Apply the latest security patches to the host system and then re-scan the file to see if it is detected as malicious.

  • Ensure the file is code signed to confirm its legitimacy.

  • Check the file creation date to see if it corresponds with the date of any known malware release dates.

  • Compare the file's hash against known malicious hashes in threat intelligence databases.

This question is for objective:
Security Operations
Your Score:
Security Operations
Vulnerability Management
Incident Response and Management
Reporting and Communication