Which category of malware would typically deliver payloads by tricking users into enabling macros in documents?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the Certified Ethical Hacker Version 11 Exam with a comprehensive test featuring flashcards and multiple choice questions, each accompanied by hints and explanations to ensure a thorough understanding. Ace your ethical hacking exam with confidence!

Multiple Choice

Which category of malware would typically deliver payloads by tricking users into enabling macros in documents?

Explanation:
Macro-based malware relies on embedded macro scripts in documents and persuades the user to enable macros so the payload runs. Attackers attach or link to a document (often in phishing emails) that looks legitimate, then use social engineering to convince the user to enable content. Once enabled, the macro (typically VBA) executes and can download malware, exfiltrate data, or take control of the system. This delivery method hinges on user action to run code within a trusted-looking document, rather than exploiting a network flaw directly. Other options don’t fit this delivery path: network-based malware spreads through network exploits rather than user-activated code in a document; divergent isn’t a standard malware category; sheep dipping describes testing or training users with phishing-like simulations rather than delivering actual payloads.

Macro-based malware relies on embedded macro scripts in documents and persuades the user to enable macros so the payload runs. Attackers attach or link to a document (often in phishing emails) that looks legitimate, then use social engineering to convince the user to enable content. Once enabled, the macro (typically VBA) executes and can download malware, exfiltrate data, or take control of the system. This delivery method hinges on user action to run code within a trusted-looking document, rather than exploiting a network flaw directly.

Other options don’t fit this delivery path: network-based malware spreads through network exploits rather than user-activated code in a document; divergent isn’t a standard malware category; sheep dipping describes testing or training users with phishing-like simulations rather than delivering actual payloads.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy