Question

Explain why malware authors find it more advantageous to store malicious code in a DLL, rather...

Explain why malware authors find it more advantageous to store malicious code in a DLL, rather than in an .exe file.

Engineering   Computer-Science   
0 0
Add a commentTranscribed image text
Next >

Homework Answers

Answer #1

The first thing a malware installer (first stage of infection) does when executed on a target system - be it a dropper or downloader - is to install a copy of the malware and its components into their corresponding location in the system. Some popular locations include:

  • C:Windows
  • C:Program Files
  • C:Users/[current user]/AppDataRoamingMicrosoft

However, there are instances wherein the installation of the malware becomes corrupted or incomplete due to the target system's current state at the time of infection. The target system may have a slow connection, causing a malware downloader to incompletely download the malware and its components. In the case of a malware dropper, a busy system may corrupt the files, causing the malware to function improperly. Another instance that may cause corruption is when the target system is shut down, or rebooted by the user before the malware has installed completely. Most users, when they believe their system has a malware infection, react by shutting down. "Unplug it, now!!!", if it's a server or desktop, or "Remove the battery, now!!!", if it's a laptop and you have the capability to remove the battery (most modern laptops no longer allow battery removal). The idea is that the immediate shut down the system in the middle of an infection process will thwart the attack.

Attackers are smart. They know this and have made it one of their use cases when creating new malware installer technologies that avoid any kind of corruption during installation. Their solution? Utilize TMP files and the Microsoft Windows Temp folder.

0 0
Know the answer?
Your Answer:

Post as a guest

Your Name:

What's your source?

Earn Coins

Coins can be redeemed for fabulous gifts.

Log In

Sign Up

Not the answer you're looking for?
Ask your own homework help question
Similar Questions
In python, why is it advantageous to store not just data (as vectors, arrays,etc.) but perhaps...
In python, why is it advantageous to store not just data (as vectors, arrays,etc.) but perhaps the object (an instance of your user-defined class) that contains and isable to manipulate these data in a data file through maybe the pickle module? Withoutimporting your own class definition, will the data loaded from such a data file be usableor interpretable? please also explain with code its so URGENT
why is it more efficient to store energy as lipid rather that as glycogen?
why is it more efficient to store energy as lipid rather that as glycogen?
can you think of any reason why it might be more advantageous for the external epithelium...
can you think of any reason why it might be more advantageous for the external epithelium (i.e. the skin) to be comprised of squamous cells rather than cuboidal or columnar?
Why exactly is a sports drink more advantageous than drinking water after strenuous activity?
Why exactly is a sports drink more advantageous than drinking water after strenuous activity?
Why it cannot display flop? you need to explain rather than just show me another code...
Why it cannot display flop? you need to explain rather than just show me another code MatLab function b=Matrixvector(A,x) n=length(x); b=zeros(n,1); flop=0; for i=1:n for j=1:n b(i)=b(i)+A(i,j)*x(j); flop=flop+2; end end disp(b); disp(flop);
More and more people are buying store brand products rather than national brand products. A coffee...
More and more people are buying store brand products rather than national brand products. A coffee company claims that 40% of their customers buy national brand coffee. A random sample of 700 people who buy coffee showed that 259 of them buy national brand coffee. Use a 1% level of significance to test the percentage of people who buy national brand coffee is different from 40%
What are operons ? Why are there more operons in Prokayotes rather than eukaryotes ? What...
What are operons ? Why are there more operons in Prokayotes rather than eukaryotes ? What are parts of the operon ?
Why might it make more sense to think of photoreceptors as darkness sensors rather than as...
Why might it make more sense to think of photoreceptors as darkness sensors rather than as light sensors
Explain why ATP is an energy transfer molecule rather than an energy storage molecule?
Explain why ATP is an energy transfer molecule rather than an energy storage molecule?
Why do trees store CO2 more efficiently than smaller shrubs and grasses?
Why do trees store CO2 more efficiently than smaller shrubs and grasses?
ADVERTISEMENT
Need Online Homework Help?

Get Answers For Free
Most questions answered within 1 hours.

Ask a Question
ADVERTISEMENT