An employee received a word processing file that was delivered as an email attachment. The subject line and email content enticed the employee to open the attachment. Which of the following attack vectors BEST matches this malware?
Answer: Macro-enabled file
Phishing emails with a word document attachment typically will have macros that can be ran for malicious purposes. Macros are scripts that can run whatever you want and however many times you want it to run, it's generally used for automating frequently used tasks.
Since macros can practically do whatever you want, they can be used for malicious purposes such as infecting other files, or downloading/installing other malicious software.
Macros would normally run as soon as the document is opened but now macros are disabled in Office apps by default so you would need to manually enable marcos on the file for them to run.
A macro-enabled file is a type of document (such as a word processing file) that contains embedded macros, which are scripts or programs that can be executed to automate tasks within the document. In the context of this question, the employee received a word processing file as an email attachment, and the subject line and email content enticed the employee to open the attachment. This is a common tactic used in phishing attacks, where attackers send malicious files with enticing content to trick users into opening them, thereby executing the embedded macros, which may deliver malware or perform other malicious actions.
In this scenario, the most likely attack vector is a macro-enabled file. Macro-enabled files are commonly used in phishing attacks. The email attachment appears to be a harmless document (e.g., Word, Excel), but it contains embedded macros. When the user opens the file and enables the macros as prompted, the malicious code within the macros gets executed, potentially leading to the installation of malware or other harmful activities on the user's system. This type of attack takes advantage of users' curiosity or interest in the content of the email to trick them into executing the malicious code.
This section is not available anymore. Please use the main Exam Page.SY0-601 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
IQ30
Highly Voted 2 years, 10 months agorodwave
Highly Voted 2 years, 7 months agoklinkklonk
Most Recent 1 year, 5 months agoProtract8593
1 year, 11 months agoApplebeesWaiter1122
1 year, 11 months agosamwin111
2 years, 8 months agocomeragh
2 years, 9 months agoSublime_Cheese
1 year, 9 months ago