Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: validbest

Discussions
  1. Home
  2. Discussions
  3. Microsoft
  4. Microsoft Certified: Security Operations Analyst Associate
  5. SC-200 Discussions
  6. SC-200 Exam Topic 10 Question 92 Discussion
 Microsoft Discussions
Exam SC-200 All Questions
Exam SC-200 All Questions

View all questions & answers for the SC-200 exam

Go to Exam

Microsoft Certified: Security Operations Analyst Associate SC-200 Question # 92 Topic 10 Discussion

SC-200 Exam Topic 10 Question 92 Discussion:
Question #: 92
Topic #: 10

You have a Microsoft 365 subscription that uses Microsoft Defender for Endpoint Plan 2 and contains 500 Windows devices. As part of an incident investigation, you identify the following suspected malware files:

• sys

• pdf

• docx

• xlsx

You need to create indicator hashes to block users from downloading the files to the devices. Which files can you block by using the indicator hashes?
A.

File1.sysonly

B.

File1.sysand File3.docxonly

C.

File1.sys. File3.docx, and File4jclsx only

D.

File2.pdf. File3.docxr and File4.xlsx only

E.

File1.sys, File2.pdf, File3.dooc, and File4.xlsx

Get Premium SC-200 Questions
Actual exam question for Microsoft SC-200 exam by Zara1798 at May 4, 2026, 3:30:34 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit