Splunk Observability Cloud Certified Metrics User — Question 2

What is the following step-by-step description an example of?
1. The attacker devises a non-default beacon profile with Cobalt Strike and embeds this within a document.
2. The attacker creates a unique email with the malicious document based on extensive research about their target.
3. When the victim opens this document, a C2 channel is established to the attacker’s temporary infrastructure on a compromised website.

Answer options

• A. Tactic
• B. Policy
• C. Procedure
• D. Technique

Correct answer: C

Explanation

The correct answer is C, as the steps described outline a specific set of actions taken by the attacker to achieve their goal, which defines a procedure. Options A, B, and D do not apply here because they refer to broader strategies or guidelines rather than a detailed series of steps.