Certified Incident Handler (ECIH v3) — Question 11

Identify the malicious program that is masked as a genuine harmless program and gives the attacker unrestricted access to the user's information and system.
These programs may unleash dangerous programs that may erase the unsuspecting user's disk and send the victim's credit card numbers and passwords to a stranger.

Answer options

• A. Cookie tracker
• B. Worm
• C. Trojan
• D. Virus

Correct answer: C

Explanation

The correct answer is C, Trojan, because it specifically refers to malicious software that pretends to be benign to deceive users. Options A (Cookie tracker) and B (Worm) do not fit this definition, as a cookie tracker is used for monitoring and a worm is a self-replicating malware that spreads without user interaction. Option D (Virus) is also incorrect, as a virus requires a host file to spread and does not necessarily disguise itself as a harmless application.