An analyst has investigated two alerts on two separate HR workstations and found that notepad.exe has established commun

Business, Finance, Economics, Accounting, Operations Management, Computer Science, Electrical Engineering, Mechanical Engineering, Civil Engineering, Chemical Engineering, Algebra, Precalculus, Statistics and Probabilty, Advanced Math, Physics, Chemistry, Biology, Nursing, Psychology, Certifications, Tests, Prep, and more.
Post Reply
answerhappygod
Site Admin
Posts: 899604
Joined: Mon Aug 02, 2021 8:13 am

An analyst has investigated two alerts on two separate HR workstations and found that notepad.exe has established commun

Post by answerhappygod »

An analyst has investigated two alerts on two separate HR workstations and found that notepad.exe has established communication to another IP address.Which rule will kill notepad.exe entirely if this activity is detected in the future?

A. **\system32\notepad.exe --> Communicates over the network --> Terminate process
B. **\system32\notepad.exe --> Runs or is Running --> Deny operation
C. **/system32/notepad.exe --> Runs or is Running --> Terminate process
D. **/system32/notepad.exe--> Communicates over the network --> Deny operation
Join a community of subject matter experts. Register for FREE to view solutions, replies, and use search function. Request answer by replying!
Top

This topic has 1 reply

You must be a registered member and logged in to view the replies in this topic.


Register Login
 
Post Reply

Return to “Archived Questions & Answers”