Malware Flashcards
what is a virus?
malicious code that runs on a machine without the users knowledge and infects the computer when executed. Viruses require user action in order to reproduce and spread.
what is a boot sector virus?
virus that is stored in the first sector of a hardrive and is loaded into memory on boot.
what is a Macro virus?
virus embedded into a document and is executed when the document is opened by the user.
what is a program virus?
seeks out executables or application files to infect.
what is multipartie virus?
combines boot and program viruses to first attach itself to the boot sector and system files before attacking other files on the computer.
what is encryption with a virus?
uses a cipher to encrypt its contents to avoid detection by any antivirus software.
what is a polymorphic virus?
changes its code each time its executed by altering the decryption module to evade detection.
what is a metamorphic virus?
has the ability to rewrite itself entirely before attempting to infect a file.
what is an armored virus?
has a layer of protection to confuse a program or a person whos trying to analyze it
what is a worm?
malicious software that can replicate itself without any user interaction.
what is a trojan?
a piece of malicious software that is disguised as a piece of harmless software.
what is a remote access trojan?
provides the attacker with remote control of a victim computer.
what is a rootkit?
software designed to gain administrative level control over a system without detection.
what is DLL injection?
commonly used by rootkits to maintain their persistent control. malicious code is inserted into a running process on a windows machine.
what is driver manipulation?
an attack that relies on compromising the kernal-mode device drivers that operate at a privileged or system level.
