Performing CyberOps Using Cisco Security Technologies (CBRCOR) — Question 121

An employee abused PowerShell commands and script interpreters, which lead to an indicator of compromise (IOC) trigger. The IOC event shows that a known malicious file has been executed, and there is an increased likelihood of a breach. Which indicator generated this IOC event?

Answer options

Correct answer: D

Explanation

The correct answer is D, as W32.AccesschkUtility.ioc specifically relates to a known malicious utility that can be exploited for unauthorized access. The other options refer to different types of IOC events that do not specifically indicate the execution of a harmful file in this context.