SNCF — Securing Networks with Firepower — Question 76

A user within an organization opened a malicious file on a workstation which in turn caused a ransomware attack on the network. What should be configured within the Cisco FMC to ensure the file is tested for viruses on a sandbox system?

Answer options

• A. Spero analysis
• B. capacity handling
• C. local malware analysis
• D. dynamic analysis

Correct answer: D

Explanation

Dynamic analysis is the correct answer because it allows the file to be executed in a controlled environment to observe its behavior and identify any malicious actions. The other options, such as local malware analysis and capacity handling, do not provide the sandboxing capability necessary for thorough testing of potentially harmful files.