CSE1ICB Introduction to Cybersecurity LAB latrobe.edu.au



Assignment 1: Malicious review
Instruction
• Please submit via CSE1ICB LMS page Assignment submission section.
• This assignment is due on Friday 5th April 2024 before 11.59 pm.
• Evaluation: 25 marks (= 25% of your final grade)
• You must submit your assignment only as a PDF file.
• Please write your full name and student number on the top of the first page.

Malicious Software (25 Marks)
Malicious software (malware) has been a fixture of the cybersecurity landscape for decades. The target,
technology, and impact of malware has changed over the years, but it remains a common tactic used by
cybercriminals to cause harm to both individuals and businesses.
Security researchers across the world dissect and analyse each large malware outbreak, and a lot of their
findings are publicly accessible on the Web. Several (in)famous malware samples are listed in the table
below, along with a sample article describing their outbreak.
Select one of the samples provided (or choose one of your own from your research) and answer the following
questions relating to the malware and its outbreak in the wild.
1. What type of malware is it (worm, trojan, etc.)? Briefly describe what distinguishes this malware type
from others.
2. What was the intent behind this malware, and who were its targets?
3. Briefly describe what vulnerabilities this malware exploited to infect its target systems.
4. What negative impact did this malware have on its victims and/or their systems?
You should use between 500 and 1000 words in total to answer these questions. You should research other
sources of information from reputable online resources such as malware research groups, security vendors,
security journalists and academic papers if possible.
Note:
Length Requirement: The report must be within the range of 500 to 1000 words in total. This includes all
sections combined and not each individual part.
Minimum Requirement: The report should have a minimum length of 500 words to adequately cover the topic
and provide sufficient detail and analysis.
Maximum Limit: The report should not exceed 1000 words to ensure conciseness and clarity. Keeping the
report within this limit encourages focus on essential information and prevents unnecessary verbosity.
Malware Link
MyDoom (2004) https://www.f-secure.com/v-descs/novarg.shtml
Stuxnet (2010) https://spectrum.ieee.org/telecom/security/the-real-story-of-stuxnet
WannaCry (2017) https://www.kaspersky.com.au/resource-center/threats/ransomware-
wannacry
CSE1ICB Introduction to Cybersecurity LAB latrobe.edu.au





学霸联盟