Exam 312-50v13 topic 1 question 237 discussion

Actual exam question from ECCouncil's 312-50v13

Question #: 237
Topic #: 1

A security analyst is preparing to analyze a potentially malicious program believed to have infiltrated an organization's network. To ensure the safety and integrity of the production environment, the analyst decided to use a sheep dip computer for the analysis. Before initiating the analysis, what key step should the analyst take?

A. Install the potentially malicious program on the sheep dip computer.
B. Store the potentially malicious program on an external medium, such as a CD-ROM.
C. Run the potentially malicious program on the sheep dip computer to determine its behavior.
D. Connect the sheep dip computer to the organization's internal network.

Show Suggested Answer

Suggested Answer: B 🗳️

by mulekule at April 17, 2025, 4:28 a.m.

Comments

Submit Cancel

mulekule

2 days, 15 hours ago

Selected Answer: B

Correct answer is B. Before initiating the analysis, the security analyst should ensure the potentially malicious program is isolated on an external medium like a CD-ROM. This step safeguards the analysis environment by preventing unintended exposure or damage. It's crucial to avoid connecting the sheep dip computer to the organization's internal network or directly installing or running the program prematurely, as these actions could inadvertently spread the malware or compromise the production environment.

upvoted 1 times

...

Exam 312-50v13 All Questions

View all questions & answers for the 312-50v13 exam

Exam 312-50v13 topic 1 question 237 discussion

Comments

mulekule

SY0-701