Malware

Question 1

Threat Vector

Answer 1

specific method used by an attacker to infiltrate a machine

Question 2

Attack Vector

Answer 2

how and the way an attacker will infect your system

Question 3

Virus

Answer 3

malicious software attached to clean files to spread throughout the system

Question 4

Worm

Answer 4

standalone malware programs that replicate and spread to other systems exploiting software vulnerabilities

Question 5

Trojans

Answer 5

disguised as legitimate software that allow unauthorized access when executed

Question 6

Ransomware

Answer 6

encrypts user’s data and holds it hostage until a ransom is paid

Question 7

Botnet

Answer 7

network of zombies and often used in DDOS attacks

Question 8

Zombies

Answer 8

compromised computers that are remotely controlled by hackers and perform the task of the botnet

Question 9

Rootkits

Answer 9

tasks that hide their activities and operate at the OS level for ongoing privileged access

Question 10

Backdoor

Answer 10

malicious means of bypassing normal authentication processes to gain unauthorized access

Question 11

Logic Bombs

Answer 11

embedded code placed in legitimate programs that executes a malicious action when a specific condition is met

Question 12

Key loggers

Answer 12

records a user’s keystrokes and used to capture passwords

Question 13

Spyware

Answer 13

secretly monitors and gather information or activities

Question 14

Bloatware

Answer 14

unnecessary or pre-installed software that consumes system resources

Question 15

Malware Exploitation Techniques

Answer 15

involves methods in which malware infiltrates and infects systems

Question 16

Boot-sector Virus

Answer 16

stored in the first sector of a hardrive and is loaded into memory whenever the OS boots up

Question 17

Macro Virus

Answer 17

a form of code that allows a virus to be embedded in another document and executed when the document is opened

Question 18

Program Virus

Answer 18

tries to find executable or application files to infect with their code

Question 19

Multipartite Virus

Answer 19

a combination of boot sector viruses and program viruses

Question 20

Encrypted Virus

Answer 20

hides itself from detection by leaving the malicious code/payload encrypted

Question 21

Polymorphic Virus

Answer 21

the encrypted virus but changes the code scheme every time its executed

Question 22

Metamorphic Virus

Answer 22

able to rewrite itself entirely before it attempts to infect a file

Question 23

Stealth Virus

Answer 23

the technique itself of preventing virus from detection

Question 24

Armored Virus

Answer 24

layer of protection to confuse a person/program from analyzing it

Question 25

Worm vs Virus

Answer 25

A virus requires a user to take action, a worm can replicate itself

Question 26

Remote Access Trojan (RAT)

Answer 26

provides the attacker with remote control of the victim’s machine

Question 27

Rootkit DLL Injection

Answer 27

used to run malicious code within the address space of another process by forcing it to load this DLL

Question 28

Rootkit Shim

Answer 28

software code that is place between two components; Helps DLL injection work

Question 29

File-less Malware

Answer 29

used to create a process in the system memory without relying on the local file in a system

Question 30

Dropper

Answer 30

initiates or runs other malware forms within the payload

Question 31

Downloader

Answer 31

retrieves additional tools post the initial infection form the dropper

Question 32

Shellcode

Answer 32

lightweight code meant to execute an exploit

Question 33

“Actions on Objectives” Phase

Answer 33

execution of their primary objective will commence

Question 34

Concealment

Answer 34

prolong unauthorized access by hiding their tracks

Question 35

“Living of the land”

Answer 35

exploiting standard system tools to perform intrusions