Week 2

Question 1

______ is software that enters a computer system without the user’s knowledge or consent and then performs an unwanted and usually harmful action.

Answer 1

Malware

Question 2

________ changes its internal code to one of a set number
of predefined mutations whenever it is executed.

Answer 2

Oligomorphic malware

Question 3

Malware code that completely changes from its original form whenever it is executed is known as __________.

Answer 3

polymorphic malware

Question 4

_________ can actually rewrite its own code and thus appears different each time it is executed.

Answer 4

Metamorphic malware

Question 5

Some malware has as its primary trait spreading rapidly to other systems in order to impact a large number of users.

Answer 5

Circulation

Question 6

Once the malware reaches a system through circulation, then it must “infect” or embed itself into that system.

Answer 6

Infection

Question 7

Some malware has as its primary trait avoiding detection by concealing its presence from scanners.

Answer 7

Concealment

Question 8

When __________ are the primary focus of malware, the focus is on what nefarious action(s) the malware performs.

Answer 8

Payload capabilities

Question 9

Three types of malware have the primary traits of circulation and/or infection.

Answer 9

viruses, worms, and Trojans.

Question 10

A biological virus is an agent that reproduces inside a cell. When a cell is infected by a virus, the virus takes over the operation of that cell, converting it into a virtual factory to make more copies of it.

Answer 10

Viruses

Question 11

Instead of inserting pieces of the decryption engine throughout the program code, some viruses split the malicious code itself into several parts (along with one main body of code), and then these parts are placed at random positions throughout the program code.

Answer 11

Split infection.

Question 11

Instead of having a single “jump” instruction to the “plain” virus code, some armored viruses perform two actions to make detection more difficult.

Answer 11

Swiss cheese infection

Question 12

A second type of malware that has as its primary purpose to spread is a ______.

Answer 12

Worm

Question 12

According to ancient legend, the Greeks won the Trojan War by hiding soldiers in a large hollow wooden horse that was presented as a gift to the city of Troy.

Answer 12

Trojans

Question 13

A computer _____________ is an executable program that masquerades as performing a benign activity but also does something malicious.

Answer 13

Trojan horse (or just Trojan)

Question 14

Different types of malware are designed to collect important data from the user’s computer and make it available to the attacker.

Answer 14

Collect Data

Question 15

__________ is a general term used to describe software that secretly spies on users by collecting information without their consent.

Answer 15

Spyware Spyware

Question 16

A __________ can be a small hardware device or a software program. As a hardware device, the keylogger is inserted between the computer keyboard connection and USB port.

Answer 16

keylogger

Question 17

___________ are programs installed on the computer that silently capture sensitive information.

Answer 17

Software keyloggers

Question 18

One of the newest and fastest-growing types of malware is ______.

Answer 18

Ransomware

Question 19

__________ prevents a user’s device from properly operating until a fee is paid.

Answer 19

Ransomware

Question 20

The payload of other types of malware deletes data on the computer.

Answer 20

Delete Data

Question 21

A _________ is computer code that is typically added to a legitimate program but lies dormant until it is triggered by a specific logical event.

Answer 21

logic bomb

Question 22

The payload of some types of malware attempts to modify the system’s security settings so that more insidious attacks can be made.

Answer 22

Modify System Security

Question 23

One of the most popular payloads of malware today carried by Trojans, worms, and viruses is software that will allow the infected computer to be placed under the remote control of an attacker.

Answer 23

Launch Attacks