Question

In: Computer Science

Malicious software can be classified by propagation method or payload. Explain the difference between the three...

  1. Malicious software can be classified by propagation method or payload. Explain the difference between the three common propagation methods: worm, virus and social engineering;

  2. Explain the difference between a normal virus, a metamorphic virus and a polymorphic virus, including discussing how easy they are to detect by anti-virus software

Solutions

Expert Solution

The three common propagation methods are explained below:

  • Virus: In this type of propagation, the malware takes the form of virus which infects other executable/interpreted files by inserting/attaching its code/content into them. This propagation method requires the host file to be transmitted to other systems.
  • Worm: In this type of propagation, the malware takes the form of self-replicating worm which spreads to different systems on network on its own by exploiting software vulnerabilities.
  • Social Engineering: This propagation method requires tricking the users of system to bypass the security mechanisms to download/install the malware. The malware usually is hidden under the guise of some useful software, application or tool.

The three forms of virus are:

  • Normal Virus: A normal virus is a malware which infects other executable/interpreted files on the system by inserting/attaching its code/content to them. As the host file transmits to different systems on network, the virus also spreads infecting more files. A normal virus can be easily detected by a good antivirus software due to its consistent and known signature.
  • Polymorphic virus: This is a type of virus which changes its "appearance" as it propagates. This makes them harder to be detected than normal virus as its signature is not consistent. The virus is able to modify its appearance by encrupting its content using variable key encryption.
  • Metamorphic Virus: This is a type of virus which can edit and rewrite its own code, changing its structure as it propagates. Unlike Polymorphic virus, they don't just change the appearance by encryption and don't require variable encryption key. They are considered more advanced than polymorphic virus and are even more harder to detect as their whole code structure changes frequently.

venereology answered 2 months ago
Next > < Previous

Related Solutions

QUESTION 1 (14 MARKS) Explain the term “Propagation” and state three propagation phenomenon. Explain the term...
QUESTION 1 Explain the term “Propagation” and state three propagation phenomenon. Explain the term Ionosphere.                                                           Explain the Ionospheric layers.    QUESTION 2 Draw the block diagram of a GSM network, showing clearly the various interfaces and explain the functions of the following units:         BSS NSS                                                                                                    Define the following: Forward Control Channel (FCC)                                                                 Reverse Control Channel (RCC)                                                          Forward Voice Channel (FVC)    Reverse Voice Channel (RVC)                                                             QUESTION 3 Explain the term “mobile computing”.                                                         With the...
Explain the difference between the cost method, the equity method, and the fair value method. Provide...
Explain the difference between the cost method, the equity method, and the fair value method. Provide examples to support your explanations.
Discuss the difference between quantitative data (discrete and continuous which can also be classified in terms...
Discuss the difference between quantitative data (discrete and continuous which can also be classified in terms of scale (i.e. the level of the scale) as interval or ratio scale) and qualitative data (nominal or ordinal). Examples can help!
Chapter – Cash Flows Explain the difference between the Direct Method and the Indirect Method. What...
Chapter – Cash Flows Explain the difference between the Direct Method and the Indirect Method. What is the concept of Free Cash Flow? How would an entry showing a loss on the sale of a piece of equipment be shown on the Cash Flow Statement? Show the entry below any explanation.
What is the difference between the application of Teamcenter and Technomatix software?
What is the difference between the application of Teamcenter and Technomatix software?
What is the difference between a Need and a want? State and explain the three (3)...
What is the difference between a Need and a want? State and explain the three (3) basic economic concepts.
Explain the difference between a call option and a put option. Explain the difference between an...
Explain the difference between a call option and a put option. Explain the difference between an American option and European option. Find the value of a call option using the binomial option pricing formula for single period when given the following information: you have an option with 6 months until expiration, the payoff in the up scenario is $12, and the payoff in the down scenario is $0, the risk-free rate is 5%, the weight for the up scenario is...
How can I explain the difference between quantitative and qualitative methods?
How can I explain the difference between quantitative and qualitative methods?
What is the difference between the bootstrap method and the jackknife method? (Bootstrap & Jackknife are...
What is the difference between the bootstrap method and the jackknife method? (Bootstrap & Jackknife are in R Studio/Markdown)
What is the difference between direct write-off method and allowance method?
What is the difference between direct write-off method and allowance method?
ADVERTISEMENT
Subjects
ADVERTISEMENT
Latest Questions
ADVERTISEMENT