Certified Ethical Hacker (CEH v12) — Question 232

A security analyst is preparing to analyze a potentially malicious program believed to have infiltrated an organization's network. To ensure the safety and integrity of the production environment, the analyst decided to use a sheep dip computer for the analysis. Before initiating the analysis, what key step should the analyst take?

Answer options

• A. Install the potentially malicious program on the sheep dip computer.
• B. Store the potentially malicious program on an external medium, such as a CD-ROM.
• C. Run the potentially malicious program on the sheep dip computer to determine its behavior.
• D. Connect the sheep dip computer to the organization's internal network.

Correct answer: B

Explanation

The correct step is to store the potentially malicious program on an external medium, such as a CD-ROM, to prevent any risk to the sheep dip computer and the production environment. Installing or running the program on the sheep dip computer could compromise its integrity and safety. Connecting the sheep dip computer to the internal network would also pose a significant security risk.