Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Eccouncil Exam 312-49 Topic 1 Question 30 Discussion

Actual exam question for Eccouncil's 312-49 exam
Question #: 30
Topic #: 1
[All 312-49 Questions]

An investigator has acquired packed software and needed to analyze it for the presence of malice. Which of the following tools can help in finding the packaging software used?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Glory at Jul 31, 2022, 02:28 AM

Limited Time Offer

25%

Off

Get Premium 312-49 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Casie
28 days ago
PEiD is the answer, no doubt about it. Though I do enjoy a good game of 'Dependency Walker' on the side. Keeps me entertained during those long analysis sessions.
upvoted 0 times
...
Patti
1 months ago
Dependency Walker? Really? That's more for analyzing DLL dependencies, not packing tools. PEiD is the way to go.
upvoted 0 times
Raylene
9 days ago
PEiD is definitely the tool to use for analyzing packed software.
upvoted 0 times
...
...
Norah
1 months ago
I was just about to say PEiD! It's like the go-to tool for this kind of task. Glad I'm not the only one who knows their stuff.
upvoted 0 times
...
Margurite
2 months ago
PEiD is the obvious choice here. It's a tool specifically designed to identify the packing software used on executable files.
upvoted 0 times
Glenn
21 days ago
I agree, PEiD is the best tool for that task.
upvoted 0 times
...
Lawanda
29 days ago
PEiD is definitely the way to go for identifying packing software.
upvoted 0 times
...
...
Kris
2 months ago
I'm not sure, but I think SysAnalyzer could also be helpful in this case.
upvoted 0 times
...
Jani
2 months ago
I agree with Shasta, PEiD is specifically designed to detect packers.
upvoted 0 times
...
Shasta
2 months ago
I think the answer is B) PEiD.
upvoted 0 times
...

Save Cancel