SY0-701 Threats, Vulnerabilities, and Mitigations • Set 9
SY0-701 Threats, Vulnerabilities, and Mitigations Practice Test 9 — 15 questions with explanations. Free, no signup.
A SOC analyst investigates a host after an employee opens an invoice attachment. The endpoint shows PowerShell running in a hidden window, no new executable files are created on disk, and the same suspicious activity returns after a reboot. What is the most likely attack type?