Microsoft Exam SC-200 Topic 4 Question 84 Discussion

Actual exam question for Microsoft's SC-200 exam

Question #: 84
Topic #: 4

You have a Microsoft 365 subscription that uses Microsoft Defender for Endpoint Plan 2 and contains 500 Windows devices. As part of an incident investigation, you identify the following suspected malware files:

* sys

* pdf

* docx

* xlsx

You need to create indicator hashes to block users from downloading the files to the devices. Which files can you block by using the indicator hashes?

AFile1.sysonly

BFile1.sysand File3.docxonly

CFile1.sys. File3.docx, and File4jclsx only

DFile2.pdf. File3.docxr and File4.xlsx only

EFile1.sys, File2.pdf, File3.dooc, and File4.xlsx

Show Suggested Answer

Suggested Answer: A

by Stevie at Sep 17, 2024, 12:43 PM

Limited Time Offer

25%

Off

Get Premium SC-200 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Mabelle

28 days ago

Option B is the way to go. Can't let those pesky .docx files slip through the cracks, can we? Gotta keep those devices safe from, you know, the usual suspects.

upvoted 0 times

Shelba

18 days ago

Option B is definitely the best choice. We can't risk those .docx files causing any harm.

upvoted 0 times

...

Melina

1 months ago

Haha, better watch out for those Excel files. You never know what kind of hidden formulas they might have! But seriously, I'd go with option B.

upvoted 0 times

...

Kristofer

1 months ago

I think it's option B. The question specifically says to block the suspected malware files, and those are the only ones that match the extensions provided.

upvoted 0 times