CompTIA CASP CAS-004 Question # 18 Topic 3 Discussion

CAS-004 Exam Topic 3 Question 18 Discussion:

Question #: 18

Topic #: 3

A pharmaceutical company was recently compromised by ransomware. Given the following EDR output from the process investigation:

On which of the following devices and processes did the ransomware originate?

cpt-ws018, powershell.exe

cpt-ws026, DearCry.exe

cpt-ws002, NO-AV.exe

cpt-ws026, NO-AV.exe

cpt-ws002, DearCry.exe

Get Premium CAS-004 Questions

Actual exam question for CompTIA CAS-004 exam by Vega57087 at May 1, 2026, 10:17:13 AM

Contribute your Thoughts:

Chosen Answer: A B C D E
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: validbest

Exam CAS-004 All Questions

CompTIA CASP CAS-004 Question # 18 Topic 3 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: validbest

Exam CAS-004 All Questions

CompTIA CASP CAS-004 Question # 18 Topic 3 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Awaiting moderator approval