Winter Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: pass65

Discussions
  1. Home
  2. Discussions
  3. ECCouncil
  4. Certified Ethical Hacker
  5. 312-50 Discussions
  6. 312-50 Exam Topic 5 Question 36 Discussion
 ECCouncil Discussions
Exam 312-50 All Questions
Exam 312-50 All Questions

View all questions & answers for the 312-50 exam

Go to Exam

ECCouncil Certified Ethical Hacker 312-50 Question # 36 Topic 5 Discussion

312-50 Exam Topic 5 Question 36 Discussion:
Question #: 36
Topic #: 5

How can a rootkit bypass Windows 7 operating system’s kernel mode, code signing policy?
A.

Defeating the scanner from detecting any code change at the kernel

B.

Replacing patch system calls with its own version that hides the rootkit (attacker's) actions

C.

Performing common services for the application process and replacing real applications with fake ones

D.

Attaching itself to the master boot record in a hard drive and changing the machine's boot sequence/options

Get Premium 312-50 Questions
Actual exam question for ECCouncil 312-50 exam by Solis2917 at Nov 19, 2025, 12:00:22 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit