nerdexam
EC-Council

312-50V13 · Question #430

Josh has finished scanning a network and has discovered multiple vulnerable services. He knows that several of these usually have protections against external sources but are frequently susceptible to

The correct answer is B. Weaponization. Josh's actions of drafting a malicious email with an attached disguised file, before sending it, represent the Weaponization stage of the cyber kill chain.

Submitted by miguelv· Mar 6, 2026Social Engineering

Question

Josh has finished scanning a network and has discovered multiple vulnerable services. He knows that several of these usually have protections against external sources but are frequently susceptible to internal users. He decides to draft an email, spoof the sender as the internal IT team, and attach a malicious file disguised as a financial spreadsheet. Before Josh sends the email, he decides to investigate other methods of getting the file onto the system. For this particular attempt, what was the last stage of the cyber kill chain that Josh performed?

Options

  • AExploitation
  • BWeaponization
  • CDelivery
  • DReconnaissance

How the community answered

(32 responses)
  • A
    3% (1)
  • B
    72% (23)
  • C
    16% (5)
  • D
    9% (3)

Why each option

Josh's actions of drafting a malicious email with an attached disguised file, before sending it, represent the Weaponization stage of the cyber kill chain.

AExploitation

Exploitation is the act of triggering the vulnerability and gaining access to the system, which occurs after successful delivery.

BWeaponizationCorrect

The Weaponization stage involves pairing an exploit with a backdoor or payload into a deliverable package, such as a malicious email attachment. In this scenario, Josh crafted the email and attached the malicious file, creating the weapon, but had not yet delivered it to the target.

CDelivery

Delivery is the transmission of the weapon (the malicious email) to the target, which Josh has not yet done.

DReconnaissance

Reconnaissance involves gathering information about the target, which Josh completed earlier by scanning the network and discovering vulnerabilities.

Concept tested: Cyber Kill Chain - Weaponization stage

Source: https://www.lockheedmartin.com/en-us/capabilities/cyber/cyber-kill-chain.html

Topics

#cyber kill chain#weaponization#social engineering#malicious file

Community Discussion

No community discussion yet for this question.

Full 312-50V13 Practice