Palo Alto Networks System Engineer – Cortex — Question 11
Which two methods does the Cortex XDR agent use to identify malware during a scheduled scan? (Choose two.)
Answer options
- A. WildFire hash comparison
- B. heuristic analysis
- C. signature comparison
- D. dynamic analysis
Correct answer: A, D
Explanation
The Cortex XDR agent utilizes WildFire hash comparison to check against known malware signatures and dynamic analysis to observe the behavior of files in real-time. Heuristic analysis and signature comparison are not among the specific methods highlighted for this purpose in the context of scheduled scans.