ScholarQuill logoScholarQuillUniversity Notes
  • Notes
  • Past Papers
  • Blogs
  • Todo
Login
ScholarQuill logoScholarQuillUniversity Notes
Login
NotesPast PapersBlogsTodo
More
SubjectsDiscussionCGPA CalculatorGPA CalculatorStudent PortalCourse Outline
About
About usPrivacy PolicyReportContact
Notes
Past Papers
Blogs
Todo
Analytics
    Current Subject
    🧩
    Cyber Security
    COMP3143
    Progress0 / 21 topics
    Topics
    1. Introduction to Cyber security2. Networks and the Internet3. Cyber threat landscape4. Understanding security and information security principles5. Information Security Terminology6. Who are the attackers and Advanced Persistent Threat (APT)7. Malware and types of malware8. Attacks using malware and Malware Attack Lifecycle9. Social engineering attacks and types of payload10. Industrial Espionage in Cyberspace11. Basic cryptography12. Web application attacks13. Database security14. Cyber kill chain15. Privacy and anonymity16. Network security17. Software security18. Mobile device security and Mobile app security19. Cyber Terrorism and Information Warfare20. Introduction to Digital Forensics21. Digital Forensics Categories
    COMP3143›Attacks using malware and Malware Attack Lifecycle
    Cyber SecurityTopic 8 of 21

    Attacks using malware and Malware Attack Lifecycle

    3 minread
    525words
    Beginnerlevel

    Attacks Using Malware

    Malware attacks are cyberattacks where attackers use malicious software to infiltrate, damage, or take control of systems. These attacks are designed to steal data, disrupt operations, spy on users, or extort money.

    Common Attacks Using Malware

    1. Ransomware Attacks

    • Attackers encrypt files and demand ransom for decryption keys.
    • Can shut down hospitals, companies, and government networks.

    2. Spyware Attacks

    • Attackers secretly monitor users and steal sensitive information.
    • Keyloggers capture passwords and banking details.

    3. Botnet Attacks

    • Infected devices become “bots” controlled remotely.
    • Used for DDoS attacks, spam campaigns, and large-scale cybercrime.

    4. Trojan-Based Attacks

    • Trojans disguise themselves as legitimate software.
    • Provide attackers with backdoor access
    • Used for data theft, remote control, or installing more malware.

    5. Worm Attacks

    • Worms automatically spread across networks.
    • Cause massive network congestion and system failures.

    6. Rootkit Attacks

    • Rootkits hide malicious activities.
    • Allow attackers long-term, stealthy control over systems.

    7. Fileless Malware Attacks

    • Executes in memory using trusted system tools (e.g., PowerShell).
    • Very hard to detect with traditional antivirus.

    8. Adware and Malvertising Attacks

    • Inject unwanted ads into browsers.
    • Redirect users to malicious websites that download more malware.

    9. Logic Bomb Attacks

    • Malicious code triggered by a specific event.
    • Often used for sabotage (e.g., employee revenge).

    Malware Attack Lifecycle

    The Malware Attack Lifecycle describes how malware is planned, delivered, executed, and maintained in a victim’s system. Understanding this lifecycle helps in identifying and stopping attacks at each stage.

    1. Reconnaissance (Target Identification)

    Attackers gather information about potential victims such as:

    • System vulnerabilities
    • Software versions
    • User behavior
    • Network configurations

    This helps plan the most effective attack.

    2. Weaponization

    The attacker creates or customizes the malware:

    • Choose malware type (virus, Trojan, ransomware, etc.)
    • Combine exploit with malicious payload
    • Test the malware to ensure stealthiness

    3. Delivery

    The malware is delivered to the victim using various methods:

    • Phishing emails
    • Malicious attachments or links
    • Drive-by downloads
    • Infected USB devices
    • Exploit kits on websites

    4. Exploitation

    The malware activates by exploiting a vulnerability or tricking the user into running it. Examples:

    • User clicks an infected file
    • Exploit uses a software bug to run code
    • Macro-enabled document executes malware

    5. Installation

    The malware installs itself on the system, often by:

    • Copying files to hidden directories
    • Modifying registry entries
    • Dropping additional payloads

    It tries to remain undetected.

    6. Command and Control (C2) Communication

    Some malware (like botnets or Trojans) connects back to the attacker’s server. Attackers may:

    • Send commands
    • Extract stolen data
    • Update or reinstall malware
    • Move laterally inside the network

    7. Execution of Malicious Actions (Impact Stage)

    The malware performs its intended function:

    • Encrypt data (ransomware)
    • Steal information (spyware)
    • Delete or corrupt files
    • Disable security tools
    • Launch DDoS attacks
    • Create backdoors for future access

    8. Persistence

    Advanced malware ensures it survives reboots and remains active by:

    • Installing rootkits
    • Creating startup entries
    • Using scheduled tasks
    • Adding backdoors

    Simplified Malware Attack Lifecycle Diagram (Text Form)

    Reconnaissance → Weaponization → Delivery → Exploitation 
→ Installation → Command & Control → Malicious Action → Persistence

    Conclusion

    Malware attacks are powerful and dangerous, often causing major financial, operational, and privacy damage. By understanding the malware attack lifecycle, organizations and individuals can implement stronger defenses and detect threats early.

    Previous topic 7
    Malware and types of malware
    Next topic 9
    Social engineering attacks and types of payload

    Past Papers

    Open this section to load past papers

    Click on Show Past Papers to see past papers.
    On This Page
      Reading Stats
      Est. reading time3 min
      Word count525
      Code examples0
      DifficultyBeginner