Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

CrowdStrike Exam CCFH-202 Topic 7 Question 26 Discussion

Actual exam question for CrowdStrike's CCFH-202 exam
Question #: 26
Topic #: 7
[All CCFH-202 Questions]

Refer to Exhibit.

What type of attack would this process tree indicate?

Show Suggested Answer Hide Answer
Suggested Answer: C

This process tree indicates a phishing attack, as it shows a user opening an email attachment (outlook.exe) that launches a malicious macro (cmd.exe) that downloads and executes a payload (powershell.exe) that connects to a remote server (svchost.exe). A phishing attack is a type of social engineering attack that uses deceptive emails or messages to trick users into opening malicious attachments or links that can compromise their systems or credentials.


Contribute your Thoughts:

Ashlyn
3 months ago
I think it's a man-in-the-middle attack, based on the pattern of activity.
upvoted 0 times
...
Clorinda
3 months ago
I'm not sure, it could also be a web application attack.
upvoted 0 times
...
Roy
3 months ago
Come on, it's so obvious. This is a Web Application Attack, probably trying to exploit some vulnerability in the site.
upvoted 0 times
...
Brigette
3 months ago
Pfft, you guys are way off. This is clearly a Phishing Attack - they're trying to lure the user into entering their credentials.
upvoted 0 times
...
Jina
3 months ago
I agree with Chi, the process tree looks suspicious.
upvoted 0 times
...
Chi
3 months ago
I think it's a phishing attack.
upvoted 0 times
...
Karima
3 months ago
Nah, this is a classic Man-in-the-middle Attack. Intercepting the connection and doing who knows what!
upvoted 0 times
Tuyet
3 months ago
We should be careful with our online activities to avoid falling victim to such attacks.
upvoted 0 times
...
Albina
3 months ago
Yeah, definitely looks like someone is intercepting the connection.
upvoted 0 times
...
Tyisha
3 months ago
Yeah, definitely looks like someone is intercepting the connection.
upvoted 0 times
...
Carlee
3 months ago
I think you're right, it does look like a Man-in-the-middle Attack.
upvoted 0 times
...
Alex
3 months ago
I think you're right, it does look like a Man-in-the-middle Attack.
upvoted 0 times
...
...
Jennifer
4 months ago
This is definitely a Brute Forcing Attack. Look at all those processes trying to guess the password!
upvoted 0 times
Cruz
2 months ago
A) Brute Forcing Attack
upvoted 0 times
...
Georgene
3 months ago
No way, it's definitely a Brute Forcing Attack. Look at all those processes trying to guess the password!
upvoted 0 times
...
Felicia
3 months ago
C) Phishing Attack
upvoted 0 times
...
Matthew
3 months ago
I agree, the process tree does indicate a Brute Forcing Attack.
upvoted 0 times
...
Serita
3 months ago
A) Brute Forcing Attack
upvoted 0 times
...
...

Save Cancel