What malware is capable of changing the system's DNS server settings and gives attackers control of the DNS server used on the victim's system?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the Certified Ethical Hacker Version 11 Exam with a comprehensive test featuring flashcards and multiple choice questions, each accompanied by hints and explanations to ensure a thorough understanding. Ace your ethical hacking exam with confidence!

Multiple Choice

What malware is capable of changing the system's DNS server settings and gives attackers control of the DNS server used on the victim's system?

Explanation:
This question tests DNS hijacking by malware—the ability to rewrite how a system resolves domain names so the attacker controls where DNS lookups go. DNSChanger is the one that does this: it changes the machine’s DNS server settings to point to attacker-controlled resolvers. Once those settings point to the attacker’s DNS servers, every domain lookup can be redirected to malicious sites, phishing pages, or malware download sites, giving the attacker real control over the victim’s web traffic at the DNS level. The other options don’t fit this behavior. PA File Sight is a data loss prevention tool and does not alter DNS settings. DriverView lists installed drivers, not DNS configurations. DNSQuerySniffer captures or analyzes DNS traffic but does not change DNS servers or take control of responses.

This question tests DNS hijacking by malware—the ability to rewrite how a system resolves domain names so the attacker controls where DNS lookups go. DNSChanger is the one that does this: it changes the machine’s DNS server settings to point to attacker-controlled resolvers. Once those settings point to the attacker’s DNS servers, every domain lookup can be redirected to malicious sites, phishing pages, or malware download sites, giving the attacker real control over the victim’s web traffic at the DNS level.

The other options don’t fit this behavior. PA File Sight is a data loss prevention tool and does not alter DNS settings. DriverView lists installed drivers, not DNS configurations. DNSQuerySniffer captures or analyzes DNS traffic but does not change DNS servers or take control of responses.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy