You're the security administrator for a small consulting firm whose network has been the victim of a ransomware attack. They've decided to pay $t$ ransom to regain their data, but you've been tasked with investigating the attack so that the vulnerabilities can be patched to hopefully prevent fi scenarios like this one.

During your investigation, you discover that the hacker gained initial access to the network through a user account. From there, the hacker was a gain access to a domain service account. From this account, the hacker ran some custom scripts that exploited vulnerabilities in the network, whic them access to a domain administrator account. With this privileged account, the attacker was able to execute their ransomware attack.

Which type of attack was carried out by the hacker?

Commodity ransomware

Phishing attack

Data theft

Human$-$operated ransomware