An experienced forensic investigator, Chris, is tasked with preparing a testbed for malware analysis. Given the complexity of the malware samples, which are mostly compatible with Windows binary executables, Chris must take meticulous precautions to ensure the integrity of the lab environment. Which of the following procedures would Chris NOT be likely to follow in preparing the testbed for malware analysis?

A. Installing a guest OS such as Ubuntu in virtual machines will serve as forensic workstations

B. Enabling shared folders and guest isolation allows easy data transfer between host and guest operating systems

C. Using tools such as INetSim to simulate internet services while ensuring that the NIC card is in "host only" mode

D. Creating a snapshot of the virtual machine state prior to malware analysis for easy reversion in case of accidental system corruption








 

Suggested Answer: B





This question is in 312-49V10 EC-Council Computer Hacking Forensic Investigator (CHFI) v10 Exam
For getting EC-Council Computer Hacking Forensic Investigator (CHFI) Certificate







Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by EC-Council. 
Trademarks, certification & product names are used for reference only and belong to EC-Council.
The website does not contain actual questions and answers from EC-Council's Certification Exams.