Summary - CSC 385 (CSC385) Midterm 1 Exam {answered}

Emily Carson


February 9, 2024


Midterm One


Q1: Review the following case study where they discussed an old Malware. Generate an STIX

structure based on the information provided in the article.


{

“type”: “malware” ,

“spec_version”: “3.0” ,

“id”: “aids – trojans – ransomware” ,

“created”: “1989-12-01T00:00:00Z” ,

“modified”: “1989-12-01T00:00:00Z” ,

“name”: “AIDS Trojan (PC Cyborg) ” ,

“description": “AIDS Trojan is the first Ransomware attack that was launched in
December 1989, and it was called PC Cyborg or AIDS Trojan. The attack was distributed
by Dr. Joseph L. Popp. ” ,

“labels”: [“ransomware”] ,

“is_family”: false ,

“kill_chain_phases”: [ {

“kill_chain_name”: “cyber-attack_lifecycle” ,

“phase_name”: “delivery”

},

{

“kill_chain_name”: “cyber-attack_lifecycle” ,

, “phase_name”: “exploitation”

},

{

“kill_chain_name”: “cyber-attack_lifecycle” ,

“phase_name”: “isntallation”

},

{

“kill_chain_name”: “cyber-attack_lifecycle” ,

“phase_name”: “impact”

}],

“malware_types”: [ “Trojan” ] ,

“delivery_methods”: [ {

“name”: “physical”

“description”: “Infected floppy disks labeled as AID Information Introductory
Diskette were mailed to victims.”

}]

}