CEH v10 Malware Threats | Questions And Answers Latest {2024- 2025} A+ Graded |
100% Verified
Malware - Malicious software that damages or disables computer systems and gives limited or full
control of the systems to its creator for theft or fraud.
Includes Trojan horse, Backdoor, Rootkit, Ransomware, Adware, Virus, Worms, Spyware, Botnet
and Crypter
Malware is developed and used for - - Attack browsers and track websites visited
- Affect system performance, making it very slow
- Cause hardware failure, rendering computers inoperable
- Steal personal information, including contacts
- Erase valuable information, resulting in the substantial data losses
- Attack additional computer systems directly from a compromised system
- Spam inboxes with advertising emails
Different Ways a Malware can Get into a System - - Instant Messenger Applications
- Portable Hardware Media /Removable Devices
- Browser and Email Software Bugs
- Insecure Patch management
- Rogue/Decoy Applications
- Untrusted Sites and Freeware Web Applications/Software
- Downloading Files from Internet
- Email Attachments
- File Shareing
-Network Propagation
-Installation by other Malware
-Bluetooth and wireless networks
,Blackhat SEO - (also referred to as unethical SEO) uses aggressive SEO tactics such as keyword stuffing,
doorway pages, page swapping, and adding unrelated keywords to get higher search engine ranking for
their malware pages.
Social Engineered Click-jacking: - Attackers inject malware into legitimate-looking websites to trick users
by clicking them. When clicked, the malware embedded in the link executes without the knowledge or
consent of the user.
Common Techniques Attackers Use to Distribute Malware on the Web - - Blackhat Search Engine
Optimization (SEO):
- Social Engineered Click-jacking:
- Spearphishing Sites:
- Malvertising
- Compromised Legitimate Web sites
- Drive-by Downloads
- Spam Emails:
Drive-by Downloads - The unintentional downloading of software via the Internet. Here, an attacker
exploits flaws in browser software to install malware just merely by visiting a website
Malvertising - Involves embedding malware-laden advertisements in legitimate online advertising
channels to spread malware onto the systems of unsuspecting users.
Spearphishing Sites: - This technique is used for mimicking legitimate institutions, such as banks, in an
attempt to steal passwords, credit card and bank account data, and other sensitive information.
Obfuscator - a program that conceals its code and intended purpose via various techniques, and thus,
makes it hard for security mechanisms to detect or remove it
Downloader - a type of Trojan that downloads other malware from the internet on to the PC. Usually,
attackers install this software when they first gain access to a system
,Components of Malware - Crypter - software that protects malware from undergoing reverse
engineering or analysis, thus making the task of the security mechanism harder in its detection
Downloader - a type of Trojan that downloads other malware from the internet on to the PC. Usually,
attackers install downloader software when they first gain access to a system
Dropper - a type of Trojan that installs other malware files on to the system that it brought when
installed
Exploit - a malicious code that breaches the system security via software vulnerabilities to access
information or install malware
Injector - a program that injects its code into other vulnerable running processes and changes the way of
execution in order to hide or prevent its removal
Obfuscator - a program that conceals its code and intended purpose via various techniques, and thus,
makes it hard for security mechanisms to detect or remove it
Packer - a program that allows all files to bundle together into a single executable file compression in
order to bypass security software detection
Payload - a piece of software that allows control over a computer system after it has been exploited
Malicious Code - a command that defines malware's basic functionalities such as stealing data and
creating backdoors.
DroidSheep - This is a tool used for session hijacking on Android devices connected on common wireless
network. It gets the session ID of active user on Wi-Fi network and uses it to access the website as an
authorized user. It user can easily see what the authorized user is doing or seeing on the website. It can
also hijack the social account by obtaining the session ID.
Sandbox: App sandboxing is a security mechanism that helps protect the system from harmful apps
, Trojan - Malicious or harmful code that is contained apparently harmless programming or data in such a
way that it can get control and cause damage as ruining file allocation table on your hard disk.
works on the same level of privileges as victims
Activates upon user's certain predefined actions and upon activation, it can grant attacker unrestricted
access to all data stored to all data stored on compromised info system and can cause potentially
immense damage.
It creates a covert communication channel between the victim computer and the attacker for
transferring sensitive data.
Symptoms of Trojan Attacks - - The computer screen blinks, flips upside-down, or is inverted, so that
everything is displayed backward.
- The default background or wallpaper settings change automatically.
- Printers automatically start printing the document.
- Web pages suddenly open without input from the user.
- Color settings of the operating system (OS) change automatically.
- Screensavers convert to a personal scrolling message.
- Sound volume suddenly fluctuates all the way up or down.
- Anti-virus programs are automatically disabled, and the data is corrupted, altered, or deleted from the
system.
- The date and time of the computer change.
- The mouse cursor moves by itself.
- The right-click takes the function of the left-click, and vice versa.
- The pointer arrow of the mouse disappears completely.
- The mouse pointer and automatic clicks on icons are uncontrollable.
- The Windows Start button disappears.
- Pop-ups with bizarre messages that suddenly appear.
- Clipboard images and text appear to be manipulated.
- The keyboard and mouse freeze.
100% Verified
Malware - Malicious software that damages or disables computer systems and gives limited or full
control of the systems to its creator for theft or fraud.
Includes Trojan horse, Backdoor, Rootkit, Ransomware, Adware, Virus, Worms, Spyware, Botnet
and Crypter
Malware is developed and used for - - Attack browsers and track websites visited
- Affect system performance, making it very slow
- Cause hardware failure, rendering computers inoperable
- Steal personal information, including contacts
- Erase valuable information, resulting in the substantial data losses
- Attack additional computer systems directly from a compromised system
- Spam inboxes with advertising emails
Different Ways a Malware can Get into a System - - Instant Messenger Applications
- Portable Hardware Media /Removable Devices
- Browser and Email Software Bugs
- Insecure Patch management
- Rogue/Decoy Applications
- Untrusted Sites and Freeware Web Applications/Software
- Downloading Files from Internet
- Email Attachments
- File Shareing
-Network Propagation
-Installation by other Malware
-Bluetooth and wireless networks
,Blackhat SEO - (also referred to as unethical SEO) uses aggressive SEO tactics such as keyword stuffing,
doorway pages, page swapping, and adding unrelated keywords to get higher search engine ranking for
their malware pages.
Social Engineered Click-jacking: - Attackers inject malware into legitimate-looking websites to trick users
by clicking them. When clicked, the malware embedded in the link executes without the knowledge or
consent of the user.
Common Techniques Attackers Use to Distribute Malware on the Web - - Blackhat Search Engine
Optimization (SEO):
- Social Engineered Click-jacking:
- Spearphishing Sites:
- Malvertising
- Compromised Legitimate Web sites
- Drive-by Downloads
- Spam Emails:
Drive-by Downloads - The unintentional downloading of software via the Internet. Here, an attacker
exploits flaws in browser software to install malware just merely by visiting a website
Malvertising - Involves embedding malware-laden advertisements in legitimate online advertising
channels to spread malware onto the systems of unsuspecting users.
Spearphishing Sites: - This technique is used for mimicking legitimate institutions, such as banks, in an
attempt to steal passwords, credit card and bank account data, and other sensitive information.
Obfuscator - a program that conceals its code and intended purpose via various techniques, and thus,
makes it hard for security mechanisms to detect or remove it
Downloader - a type of Trojan that downloads other malware from the internet on to the PC. Usually,
attackers install this software when they first gain access to a system
,Components of Malware - Crypter - software that protects malware from undergoing reverse
engineering or analysis, thus making the task of the security mechanism harder in its detection
Downloader - a type of Trojan that downloads other malware from the internet on to the PC. Usually,
attackers install downloader software when they first gain access to a system
Dropper - a type of Trojan that installs other malware files on to the system that it brought when
installed
Exploit - a malicious code that breaches the system security via software vulnerabilities to access
information or install malware
Injector - a program that injects its code into other vulnerable running processes and changes the way of
execution in order to hide or prevent its removal
Obfuscator - a program that conceals its code and intended purpose via various techniques, and thus,
makes it hard for security mechanisms to detect or remove it
Packer - a program that allows all files to bundle together into a single executable file compression in
order to bypass security software detection
Payload - a piece of software that allows control over a computer system after it has been exploited
Malicious Code - a command that defines malware's basic functionalities such as stealing data and
creating backdoors.
DroidSheep - This is a tool used for session hijacking on Android devices connected on common wireless
network. It gets the session ID of active user on Wi-Fi network and uses it to access the website as an
authorized user. It user can easily see what the authorized user is doing or seeing on the website. It can
also hijack the social account by obtaining the session ID.
Sandbox: App sandboxing is a security mechanism that helps protect the system from harmful apps
, Trojan - Malicious or harmful code that is contained apparently harmless programming or data in such a
way that it can get control and cause damage as ruining file allocation table on your hard disk.
works on the same level of privileges as victims
Activates upon user's certain predefined actions and upon activation, it can grant attacker unrestricted
access to all data stored to all data stored on compromised info system and can cause potentially
immense damage.
It creates a covert communication channel between the victim computer and the attacker for
transferring sensitive data.
Symptoms of Trojan Attacks - - The computer screen blinks, flips upside-down, or is inverted, so that
everything is displayed backward.
- The default background or wallpaper settings change automatically.
- Printers automatically start printing the document.
- Web pages suddenly open without input from the user.
- Color settings of the operating system (OS) change automatically.
- Screensavers convert to a personal scrolling message.
- Sound volume suddenly fluctuates all the way up or down.
- Anti-virus programs are automatically disabled, and the data is corrupted, altered, or deleted from the
system.
- The date and time of the computer change.
- The mouse cursor moves by itself.
- The right-click takes the function of the left-click, and vice versa.
- The pointer arrow of the mouse disappears completely.
- The mouse pointer and automatic clicks on icons are uncontrollable.
- The Windows Start button disappears.
- Pop-ups with bizarre messages that suddenly appear.
- Clipboard images and text appear to be manipulated.
- The keyboard and mouse freeze.
