Latest EC-Council 312-85 Dumps Questions - Pass Exam With Ease [2023]

Latest EC-Council 312-85 Dumps Questions – Pass Exam With Ease [2023]

Jonnie Karnath2023-03-27T02:40:02+00:00

EC-Council 312-85 dumps questions are designed to help you pass the Certified Threat Intelligence Analyst exam with ease. It covers all the topics and concepts that you need to know to pass the exam. They are designed by industry experts who have in-depth knowledge of the subject matter and can provide you with the most relevant and accurate information. Using EC-Council 312-85 dumps questions will give you a realistic exam experience, as the questions are similar in format and difficulty to the actual exam questions. This will help you prepare better for the exam and reduce exam anxiety. By using these EC-Council 312-85 dumps questions, you can increase your chances of passing the exam on your first attempt.

Page 1 of 2

1. A network administrator working in an ABC organization collected log files generated by a traffic monitoring system, which may not seem to have useful information, but after performing proper analysis by him, the same information can be used to detect an attack in the network.

Which of the following categories of threat information has he collected?

Advisories

Strategic reports

Detection indicators

Low-level data

2. In a team of threat analysts, two individuals were competing over projecting their own hypotheses on a given malware. However, to find logical proofs to confirm their hypotheses, the threat intelligence manager used a de-biasing strategy that involves learning strategic decision making in the circumstances comprising multistep interactions with numerous representatives, either having or without any perfect relevant information.

Which of the following de-biasing strategies the threat intelligence manager used to confirm their hypotheses?

Game theory

Machine learning

Decision theory

Cognitive psychology

3. Daniel is a professional hacker whose aim is to attack a system to steal data and money for profit. He performs hacking to obtain confidential data such as social security numbers, personally identifiable information (PII) of an employee, and credit card information. After obtaining confidential data, he further sells the information on the black market to make money.

Daniel comes under which of the following types of threat actor.

Industrial spies

State-sponsored hackers

Insider threat

Organized hackers

4. In which of the following forms of bulk data collection are large amounts of data first collected from multiple sources in multiple formats and then processed to achieve threat intelligence?

Structured form

Hybrid form

Production form

Unstructured form

5. Tracy works as a CISO in a large multinational company. She consumes threat intelligence to understand the changing trends of cyber security. She requires intelligence to understand the current business trends and make appropriate decisions regarding new technologies, security budget, improvement of processes, and staff. The intelligence helps her in minimizing business risks and protecting the new technology and business initiatives.

Identify the type of threat intelligence consumer is Tracy.

Tactical users

Strategic users

Operational users

Technical users

6. Jame, a professional hacker, is trying to hack the confidential information of a target organization. He identified the vulnerabilities in the target system and created a tailored deliverable malicious payload using an exploit and a backdoor to send it to the victim.

Which of the following phases of cyber kill chain methodology is Jame executing?

Reconnaissance

Installation

Weaponization

Exploitation

7. Bob, a threat analyst, works in an organization named TechTop. He was asked to collect intelligence to fulfil the needs and requirements of the Red Tam present within the organization.

Which of the following are the needs of a RedTeam?

Intelligence related to increased attacks targeting a particular software or operating system vulnerability

Intelligence on latest vulnerabilities, threat actors, and their tactics, techniques, and procedures (TTPs)

Intelligence extracted latest attacks analysis on similar organizations, which includes details about latest threats and TTPs

Intelligence that reveals risks related to various strategic business decisions

8. Alice, a threat intelligence analyst at HiTech Cyber Solutions, wants to gather information for identifying emerging threats to the organization and implement essential techniques to prevent their systems and networks from such attacks. Alice is searching for online sources to obtain information such as the method used to launch an attack, and techniques and tools used to perform an attack and the procedures followed for covering the tracks after an attack.

Which of the following online sources should Alice use to gather such information?

Financial services

Social network settings

Hacking forums

Job sites

9. Build a work breakdown structure (WBS)

1-->9-->2-->8-->3-->7-->4-->6-->5

3-->4-->5-->2-->1-->9-->8-->7-->6

1-->2-->3-->4-->5-->6-->9-->8-->7

1-->2-->3-->4-->5-->6-->7-->8-->9

10. Michael, a threat analyst, works in an organization named TechTop, was asked to conduct a cyber-threat intelligence analysis. After obtaining information regarding threats, he has started analyzing the information and understanding the nature of the threats.

What stage of the cyber-threat intelligence is Michael currently in?

Unknown unknowns

Unknowns unknown

Known unknowns

Known knowns

Page 2 of 2

11. Andrews and Sons Corp. has decided to share threat information among sharing partners. Garry, a threat analyst, working in Andrews and Sons Corp., has asked to follow a trust model necessary to establish trust between sharing partners. In the trust model used by him, the first organization makes use of a body of evidence in a second organization, and the level of trust between two organizations depends on the degree and quality of evidence provided by the first organization.

Which of the following types of trust model is used by Garry to establish the trust?

Mediated trust

Mandated trust

Direct historical trust

Validated trust

12. A team of threat intelligence analysts is performing threat analysis on malware, and each of them has come up with their own theory and evidence to support their theory on a given malware.

Now, to identify the most consistent theory out of all the theories, which of the following analytic processes must threat intelligence manager use?

Threat modelling

Application decomposition and analysis (ADA)

Analysis of competing hypotheses (ACH)

Automated technical analysis

13. Walter and Sons Company has faced major cyber attacks and lost confidential data. The company has decided to concentrate more on the security rather than other resources. Therefore, they hired Alice, a threat analyst, to perform data analysis. Alice was asked to perform qualitative data analysis to extract useful information from collected bulk data.

Which of the following techniques will help Alice to perform qualitative data analysis?

Regression analysis, variance analysis, and so on

Numerical calculations, statistical modeling, measurement, research, and so on.

Brainstorming, interviewing, SWOT analysis, Delphi technique, and so on

Finding links between data and discover threat-related information

14. Kim, an analyst, is looking for an intelligence-sharing platform to gather and share threat information from a variety of sources. He wants to use this information to develop security policies to enhance the overall security posture of his organization.

Which of the following sharing platforms should be used by Kim?

Cuckoo sandbox

OmniPeek

PortDroid network analysis

Blueliv threat exchange network

15. Kathy wants to ensure that she shares threat intelligence containing sensitive information with the appropriate audience. Hence, she used traffic light protocol (TLP).

Which TLP color would you signify that information should be shared only within a particular community?

Red

White

Green

Amber

Facebook Twitter LinkedIn Google + Email