Podcast
Questions and Answers
What does a handle point to in memory?
What does a handle point to in memory?
- File content
- I/O devices
- Arithmetic operations
- Location in memory (correct)
Which function is used to create or open files?
Which function is used to create or open files?
- CreateWindowEx
- WriteFile
- ReadFile
- CreateFile (correct)
What do ReadFile and WriteFile operate on as a stream?
What do ReadFile and WriteFile operate on as a stream?
- Memory locations
- Files (correct)
- Pointers
- Handles
What does CreateFileMapping allow for?
What does CreateFileMapping allow for?
What does MapViewOfFile return a pointer to?
What does MapViewOfFile return a pointer to?
Can arithmetic operations be performed on handles?
Can arithmetic operations be performed on handles?
What term is used to refer to the base address in the Windows registry?
What term is used to refer to the base address in the Windows registry?
What is the primary purpose of using the pointer to the base address in the Windows registry?
What is the primary purpose of using the pointer to the base address in the Windows registry?
Which of the following is NOT a common use of the Windows registry according to the text?
Which of the following is NOT a common use of the Windows registry according to the text?
How many top-level sections are there in the Windows registry referred to as root keys or hives?
How many top-level sections are there in the Windows registry referred to as root keys or hives?
What is a Key in the Windows registry analogous to?
What is a Key in the Windows registry analogous to?
How does malware interact with the operating system?
How does malware interact with the operating system?
Which naming convention does Windows use for API function identifiers?
Which naming convention does Windows use for API function identifiers?
What is the purpose of Handles in Windows OS?
What is the purpose of Handles in Windows OS?
Which type does the prefix 'dw' indicate in Hungarian Notation used by Windows?
Which type does the prefix 'dw' indicate in Hungarian Notation used by Windows?
What makes it easy to identify the type of a variable in Hungarian Notation?
What makes it easy to identify the type of a variable in Hungarian Notation?
Which of the following represents 16 bits according to Hungarian Notation in Windows?
Which of the following represents 16 bits according to Hungarian Notation in Windows?
What API call is used to initialise a connection to the internet?
What API call is used to initialise a connection to the internet?
What function is typically used to download a file from the internet in two steps?
What function is typically used to download a file from the internet in two steps?
Which WIN32 API function is commonly used to create a new process?
Which WIN32 API function is commonly used to create a new process?
What does the STARTUPINFO parameter in CreateProcess include?
What does the STARTUPINFO parameter in CreateProcess include?
How can malicious programs use standard input, output, and error messages?
How can malicious programs use standard input, output, and error messages?
What type of properties can a parent process specify for its child process?
What type of properties can a parent process specify for its child process?
What is the primary purpose of key loggers?
What is the primary purpose of key loggers?
What are the two most common methods used by key loggers?
What are the two most common methods used by key loggers?
What is the purpose of a hook procedure in the context of key loggers?
What is the purpose of a hook procedure in the context of key loggers?
Which API function is used to intercept keyboard events and relay them to a malicious function?
Which API function is used to intercept keyboard events and relay them to a malicious function?
What does malware do in the context of polling the keyboard?
What does malware do in the context of polling the keyboard?
Which function is called to get the state of a specific key during polling?
Which function is called to get the state of a specific key during polling?
