Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CSF Finals > Detecting Malware > Flashcards

Detecting Malware Flashcards

1
Q

What are some infection vectors?

A
  • Emails
  • Drive-by Downloads
  • Vulnerabilities in software/OS
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

How do you detect malware?

A

Using antivirus software that identifies and removes malware and also tries to stop users from getting infected in the first place.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are virus dictioanries?

A

A large dictionary of signatures of known malware, used to compare with files - but what if malware is polymorphic and metamorphic?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is a safe analysis environment?

A

It is to create a virtual machine and running the suspected program in the VM and then examined and monitored for malware-like behavior/changes (indicators of compromise).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are the two Anti-VM techniques?

A

Checking for IO ports and determining Hypervisor brand using CPUID.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is the preliminary analysis technique?

A
  • Isolate
  • Unpack
  • Submit to VirusTotal
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Why are malware becoming multi-staged?

A

Multi-staged malware is much harder to identify as they drop multiple files each time and have different payloads for different purposes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CSF Finals (13 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions