Eccouncil 212-82 Exam - Topic 9 Question 61 Discussion

Actual exam question for Eccouncil's 212-82 exam

Question #: 61
Topic #: 9

RAT has been setup in one of the machines connected to the network to steal the important Sensitive corporate docs located on Desktop of the server, further investigation revealed the IP address of the server 20.20.10.26. Initiate a remote connection using thief client and determine the number of files present in the folder.

Hint: Thief folder is located at: Z:\CCT-Tools\CCT Module 01 Information Security Threats and Vulnerabilities\Remote Access Trojans (RAT)\Thief of Attacker Machine-1.

Show Suggested Answer

Suggested Answer: C

3 is the number of files present in the folder in the above scenario. A RAT (Remote Access Trojan) is a type of malware that allows an attacker to remotely access and control a compromised system or network. A RAT can be used to steal sensitive data, spy on user activity, execute commands, install other malware, etc. To initiate a remote connection using thief client, one has to follow these steps:

Navigate to the thief folder located at Z:CCT-ToolsCCT Module 01 Information Security Threats and VulnerabilitiesRemote Access Trojans (RAT)Thief of Attacker Machine-1.

Double-click on thief.exe file to launch thief client.

Enter 20.20.10.26 as IP address of server.

Enter 1234 as port number.

Click on Connect button.

After establishing connection with server, click on Browse button.

Navigate to Desktop folder on server.

Count number of files present in folder.

The number of files present in folder is 3, which are:

Sensitive corporate docs.docx

Sensitive corporate docs.pdf

Sensitive corporate docs.txt

by Val at Jan 05, 2026, 05:16 AM

Limited Time Offer

25%

Off

Get Premium 212-82 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Davida

4 days ago

Definitely C) 3. I can practically see the files in my mind.

upvoted 0 times

...

Irving

9 days ago

C) 3 files, easy peasy.

upvoted 0 times

...

Shayne

14 days ago

The answer is C) 3. I'm sure of it.

upvoted 0 times

...

Carole

19 days ago

I think I remember the hint about the file path, but I’m not confident about the actual number of files. I need to double-check my notes!

upvoted 0 times

...

Francesco

24 days ago

I feel like I should know how many files are in that folder, but I keep second-guessing myself. Was it 3 or 4?

upvoted 0 times

...

Lera

29 days ago

This reminds me of a similar question we had about counting files in a directory. I think I got it right then, but I can't recall the exact steps now.

upvoted 0 times

...

Lindy

1 month ago

I remember practicing remote connections, but I'm not entirely sure how to count the files once I'm in.

upvoted 0 times

...

Ezekiel

1 month ago

Hmm, I'm a little confused about the whole RAT and thief client thing. I'll need to do some research on those concepts before I can confidently answer this question. Might be a good idea to ask the instructor for some clarification.

upvoted 0 times

...

Gwenn

1 month ago

Alright, let me break this down step-by-step. First, I need to locate the thief folder on the attacker machine. Then, I'll use the thief client to connect to the server and check the number of files in the folder. I think I can handle this.

upvoted 0 times

...

Larue

2 months ago

Wait, so I'm supposed to use a RAT to steal sensitive corporate documents? That doesn't sound right. I'm not sure I'm comfortable with that approach, even if it's just for an exam question.

upvoted 0 times

...

Ligia

2 months ago

Okay, let's see here. The question is asking me to initiate a remote connection using the thief client and determine the number of files in the folder. I think I've got a good handle on this, so I'll give it my best shot.

upvoted 0 times

...

Lavonne

2 months ago

Hmm, this seems like a tricky one. I'll need to carefully review the details and make sure I understand the setup before attempting to solve it.

upvoted 0 times

...