Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Malware Analysis > MISC > Flashcards

MISC Flashcards

1
Q

Name few most common Debuggers and Disassembler?

A

IDA pro, Olly Debugger, Immunity Debugger, Radare2 , GDB debugger, x64 DBG, Binary Ninja

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is the main difference between debugger and disassembler?

A

Main difference between debugger and disassembler is that debugger execute the program and analyze it during run time, whereas disassembler perform the static analysis and provides assembly of provided binary.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which is the common section utilized by droppers to embed malicious file?

A

Droppers mostly use .rsrc (resources) section for embedding file to drop and hide with techniques like obfuscation.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is historical significance of “MZ” bytes in PE header file?

A

They are the initials of “Mark Zbikowski” former and one of the prominent architect of MS-DOS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Do IDA pro loads the resource section by default ?

A

No, This is not happens when we do static analysis since it may result in some problems.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Malware Analysis (5 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions