Computer Hacking Forensic Investigator (CHFI v10) — Question 554

Malware analysis can be conducted in various manners. An investigator gathers a suspicious executable file and uploads it to VirusTotal in order to confirm whether the file is malicious, provide information about its functionality, and provide information that will allow to produce simple network signatures. What type of malware analysis was performed here?

Answer options

• A. Hybrid
• B. Static
• C. Volatile
• D. Dynamic

Correct answer: B

Explanation

The correct answer is B, Static analysis, which involves examining the executable file without executing it, to gather information. The other options, such as Dynamic analysis, involve running the file to observe its behavior, while Hybrid analysis combines both methods, and Volatile analysis refers to data that changes during runtime, which is not applicable in this case.