Kizspy | Question: 48 (Choose 1 answer)
An administrator suspects polymorphic malware has successfully entered the network past the HIDS system perimeter. The polymorphic malware is, however, successfully identified and isolated. What must the administrator do to create signatures to prevent the file from entering the network again?
A. Execute the polymorphic file in the Cisco Threat Grid Glovebox.
B. Run the Cisco Talos security intelligence service.
C. Use Cisco AMP to track the trajectory of a file through the network.
D. Run a baseline to establish an accepted amount of risk, and the environmental components that contribute to the risk level of the polymorphic malware.
