nerdexam
ExamsGCIHQuestions#97
GIAC

GCIH · Question #97

GCIH Question #97: Real Exam Question with Answer & Explanation

The correct answer is D: Trojan horse. A Trojan horse does not self-replicate and relies on user action or favorable conditions to spread, distinguishing it from worms and viruses that propagate automatically.

Malware Analysis & Advanced Persistent Threats

Question

Which of the following types of malware does not replicate itself but can spread only when the circumstances are beneficial?

Options

  • AMass mailer
  • BWorm
  • CBlended threat
  • DTrojan horse

Explanation

A Trojan horse does not self-replicate and relies on user action or favorable conditions to spread, distinguishing it from worms and viruses that propagate automatically.

Common mistakes.

  • A. A mass mailer actively replicates by sending copies of itself to addresses found in the infected system's contact list, which is a form of self-propagation.
  • B. A worm is defined specifically by its ability to self-replicate and spread across networks automatically without requiring user interaction.
  • C. A blended threat combines characteristics of multiple malware types - such as viruses, worms, and Trojans - and typically includes self-replication as part of its combined attack vector.

Concept tested. Trojan horse malware classification and replication behavior

Reference. https://learn.microsoft.com/en-us/microsoft-365/security/intelligence/trojans-malware

Topics

#trojan horse#malware types#replication#malware classification

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GCIH Practice