최신GIAC Reverse Engineering Malware - GREM무료샘플문제
문제1
Which of the following flow control structures is often used by malware to loop through a list of tasks or commands?
Which of the following flow control structures is often used by malware to loop through a list of tasks or commands?
정답: A
문제2
When analyzing malicious software, what is an indicator of anti-emulation techniques being used?
When analyzing malicious software, what is an indicator of anti-emulation techniques being used?
정답: D
문제3
What does the presence of DllImport attribute indicate in a .NET assembly? (Choose Two)
What does the presence of DllImport attribute indicate in a .NET assembly? (Choose Two)
정답: A,D
문제4
A malware sample checks the registry key:
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProductId
What is the MOST likely purpose?
A malware sample checks the registry key:
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProductId
What is the MOST likely purpose?
정답: D
문제5
What tool is commonly used to decompile .NET binaries for analysis?
What tool is commonly used to decompile .NET binaries for analysis?
정답: A
문제6
What is the main purpose of using the SetWindowsHookEx function in malware?
What is the main purpose of using the SetWindowsHookEx function in malware?
정답: A
문제7
You are analyzing a malware sample that appears to inject malicious code into the explorer.exe process. During execution, the malware creates a remote thread in explorer.exe and uses API calls to manipulate its memory.
How would you proceed with the analysis? (Choose three)
You are analyzing a malware sample that appears to inject malicious code into the explorer.exe process. During execution, the malware creates a remote thread in explorer.exe and uses API calls to manipulate its memory.
How would you proceed with the analysis? (Choose three)
정답: A,B,D
문제8
Which of the following is a common technique used to obfuscate JavaScript?
Which of the following is a common technique used to obfuscate JavaScript?
정답: B
문제9
What is the primary goal of static analysis in malware reverse engineering?
What is the primary goal of static analysis in malware reverse engineering?
정답: A
문제10
What is the primary purpose of using a disassembler in reverse engineering malware?
What is the primary purpose of using a disassembler in reverse engineering malware?
정답: C