Govur University Logo
--> --> --> -->
...

You have a mystery computer file. First, you look at its hidden parts without running it. Then, you run it in a safe, fake computer to see what it actually does. What are these two ways to check the file called, and what special kind of secret clue can you only get from each way to know what the file wants to do?



The first way to check a mystery computer file without running it is called static analysis. In static analysis, you examine the file's structure and code without executing it. This is like looking at a recipe book to understand the ingredients and steps of a dish without actually cooking it. The special kind of secret clue you can get from static analysis is information about the file's disassembly. Disassembly is the process of converting the machine code, which is what the computer directly understands, back into a more human-readable assembly language. This assembly code reveals the instruction....

Log in to view the answer



Community Answers

Sign in to open profiles and full community answers.

Bakht Sanan Khan

“static analysis is the process of examining the file without executing it . it invloves inspecting the file code, metadata, strings, imports, and other internal components to understand its purpose. a unique clue obtained through static analysis is the presence of embeded artifacts such as hardcoded urls, ips, api, etc which can indicate file behavior. dynamic analysis is the process of executing the file in a controlled environment , such as sandbox or VM to observe it actual behavior. a unique clue obtained through dynamic analaysis is its runtime activity, including network communication, file and registry modifications, process creation, and decrypted code in memory. these action reveals the file actual behaviour what it actually does when it runs.”

93.0%

Rohan Adhikari

“The first way to check a mystery computer file without running it is called static analysis. In ststic analysis, you examine the file's structure and code without executing it. This is like looking at a recipe book to understand the ingredients and steps of a dish without actually cooking it. The special kind of secret clue you can get from static analysis is information about the file's disassembly. Disassembly is the process of converting the machine code, which is what the computer directly understands, back into a more human-readable assembly language. This assembly code reveals the instructions the file is programmed to perform, such as opening network coonections, modifying system settings, or creating new files, but it doesn't show these actions happening in real-time. For example, you might see assembly instructions that suggest the file attempts to download more code from the internet, which is a strong indicator of malicious intent. The second way to check the file is by running it in a safe, fake computer environment, which is called dynamic analysis. Dynamic analysis is like actually cooking the dish from the recipe to see how it turns out, but in a controlled kitchen where any mess can be cleaned up easily. The special kind of secret clue you can only get from dynamic analysis is observed behavior and system interactions. This means you see exactly what the file does when it runs. For instance, dynamic analysis would reveal if the file actually creates a new, suspicious document on the desktop, tries to connect to a known malicious website, or deletes other files. This observed behavior is crucial because some malicious files only reveal their true purpose under specific conditions or after a delay, which static analysis alone might miss. Together, static and dynamic analysis provide a comprehensive understanding of a file's purpose, with static analysis revealing its potential actions through its code, and dynamic analysis confirming those actions through observations.”

88.0%

Zwe Wai Yan Bhone Myint

“The two methods are static analysis and dynamic analysis static analysis examines the file without executing it allowing analyst to inspect hideen components such as the file header strings metadata imported libraies (APIs) hashes and embeded code, These artifacts help identify suspisious behavior and possible malware without risiking infection Dynamic alaysis run the file in a cntrolled enviroment such as a sandbox pr vm to observe its real behavior this revelas runtuke indicators”

44.0%

Eeshan Garg

“Will start a Static analysis to get the knowledge of the file after that run the file in a sandbox or in an isolated enviroment and analyse the behavior and working of the file, from static analise give use the hash of file that helps to identify is the file marked as suspicious by diffrent hunters we can get some strings, headers and by running the file in i”

43.0%

Gayatri Sudhakar Hire

“static analysis:- the files instuctions in assembly language. This shows what file could do, but not wheather it actually does it. Dynamic anlalysis:- observed behaviour and system instructions. this shows what the file really does when executed.”

36.0%

Kaustubh

“static analysis: Looking at the file without running it (headers,strings,imports,structure,code).the special the secrete clue you can only get here is its built-in intent dynamic analysis: Running the file in a safe,fake computer(sandbox/VM) and watching what it actually does the special secret clue you can only get here is its real-world behavior”

30.0%

Pavan Kumar Tule

“looking at a file without running it is called static analysis which is reveals secret clues like hardcoded ip while running it in safe environment called dynamic analysisi which is reveals clues like real time network traffic and file modifications”

30.0%

Muhammad Aamir Riaz

“static analysis and dynamic analysis static analysis analysis provide a comprehensive understanding of a file's purpose dynamic analysis confirming those actions through observation”

20.0%

Arunank

“Static analysis and Dynamic analysis. Static analysis provides static IOC's, while Dynamic analysis provides behavioral IOC's”

13.0%

Shan Devinda

“First way: static Analysis Second way: Dynamic Analysis”

5.0%

Harsh Bhaskar

“Static Analysis and Dynamic Analysis”

3.0%

Kabo Sekoto

“STATIC ANALYSIS”

1.0%

Names

“static analysys”

1.0%

Redundant Elements