Free ISC2 CC Certified in Cybersecurity Actual Exam Questions - Question 12 Discussion

I think option B, Trojan, might be tricky here. Trojans themselves are malware that get installed, but they often act as a delivery method rather than something installed *because* of an infection. They bring in other malware like keyloggers or backdoors. So maybe the question is about what’s directly installed after an infection, and Trojans might not always fit neatly since they’re more like the initial payload rather than the result? Does that make sense? Could that be a reason to rule out B instead of C?

A imo, keyloggers are almost always separate programs that get installed, unlike logic bombs which just modify existing code; so keylogger fits the “installed” category better than logic bomb.

C/D? I get why logic bombs (C) aren’t really “installed” since they’re hidden in code, but backdoors (D) can also be created without a separate install, more like a hidden entry point set up through configs or tweaks. So both C and D don’t fit the typical “installation” idea as well as keyloggers or Trojans. Still, since logic bombs are more about triggering existing code rather than creating access, C seems like the better choice for not being installed.

D imo, backdoors can sometimes be created through configuration changes rather than full installs, unlike keyloggers or Trojans which are distinct programs. So backdoor might not always be “installed” per se.

It’s C for me because logic bombs activate under conditions and are usually hidden in existing files, not standalone installs like keyloggers, Trojans, or backdoors.

A/C? Keyloggers are often separate installs to capture keystrokes, while logic bombs generally hide inside existing code instead of being installed alone. That makes C a stronger pick here.

That’s a good point about logic bombs being hidden inside other software rather than installed separately. So, C fits as the one not typically installed.

A/B? Keyloggers and Trojans definitely get installed, but some backdoors might just be modifications rather than full installs. Logic bombs are usually embedded, so maybe A or B is less fitting here.

Probably D on this one. Backdoors are often installed during an infection to allow ongoing access, so they fit the usual pattern. Logic bombs, on the other hand, are frequently part of existing programs or scripts and might not be separately installed but rather embedded. Since the question focuses on what is NOT typically installed from an infection, logic bombs still seem like a good choice. But if forced to pick from what’s left, the backdoor feels like it’s definitely a deliberate install, so maybe that solidifies logic bomb as the odd one out.

Makes sense to rule out B since Trojans are often downloaded and executed, so they’re definitely installed. That leaves C as the odd one out since it’s more like hidden code, not a separate program. C.

It’s C. Logic bombs are triggered within existing software rather than being installed as separate malware like the others, so they don’t fit the typical “installed” category here.

C, because logic bombs are usually hidden in existing code, not installed separately.

Option C logic bombs don’t get installed like separate programs, unlike the rest.

A/B? Keyloggers and Trojans are definitely installed as separate malware, but logic bombs are often just parts of existing code, not standalone installs. So A might be less fitting here than B.

C vs D? Logic bombs hide in code, backdoors get installed separately.

It’s C, since logic bombs usually hide in program code, not installed separately.

Actually, C could also be a strong candidate since logic bombs are often hidden within existing software rather than installed as separate programs. They’re more about triggering conditions than separate installs.

Probably B, since Trojans often deliver malware instead of being installed themselves.

B Trojans are often just the delivery method rather than something installed separately. So they’re less about installation and more about how malware gets in, unlike keyloggers or backdoors.

C/D? Logic bombs hide in existing code, backdoors can also be just exploited access.