Exam SC-200 All QuestionsBrowse all questions from this exam
Go to Exam
Question 262

HOTSPOT

-

You have a Microsoft 365 subscription that uses Microsoft Defender for Endpoint Plan 2 and contains a Windows device named Device1.

You initiated a live response session on Device1.

You need to run a command that will download a 250-MB file named File1.exe from the live response library to Device1. The solution must ensure that File1.exe is downloaded as a background process.

How should you complete the live response command? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

    Correct Answer:

Discussion
rsanx42

1.putfile 2. & putfile - Puts a file from the library to the device. Files are saved in a working folder and are deleted when the device restarts by default. https://learn.microsoft.com/en-us/defender-endpoint/live-response#live-response-commands

nzxt610

Correct: https://learn.microsoft.com/en-us/defender-endpoint/live-response#download-a-file-in-the-background

4b097e5

Correct answer: Here is the command getfile "C:\windows\some_file.exe" & (Starts downloading a file named some_file.exe in the background) https://learn.microsoft.com/en-us/defender-endpoint/live-response#put-a-file-in-the-library

wheeldj

these answers should be, 1. Putfile - this command is used to download a file from the library to the device 2. & to make this a background task You have an Azure subscription that contains a user named User1 and a Microsoft Sentinel workspace named WS1. WS1 uses Microsoft Defender for Cloud. You have the Microsoft security analytics rules shown in the following table. User1 performs an action that matches Rule1, Rule2, Rule3, and Rule4. https://learn.microsoft.com/en-us/defender-endpoint/live-response#advanced-commands

wheeldj

Opps!! cut and past error in the above comment! my bad! Should read as below these answers should be, 1. Putfile - this command is used to download a file from the library to the device 2. & to make this a background task https://learn.microsoft.com/en-us/defender-endpoint/live-response#advanced-commands

smosmo

PUTFILE is correct: PutFile: Puts a file from the library to the device. Files are saved in a working folder and are deleted when the device restarts by default. GetFile: Collect file from a device.