nerdexam
GIAC

GREM · Question #96

GREM Question #96: Real Exam Question with Answer & Explanation

The correct answer is B. To understand when the malware was created or last modified. See the full explanation below for the reasoning.

Question

Why would an analyst examine the timestamps within the metadata of a suspected malware file?

Options

  • ATo check for time-based triggers within the malware
  • BTo understand when the malware was created or last modified
  • CTo determine the malware's expiration date
  • DTo assess the file's relevance to a specific malware campaign

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GREM Practice