New Year Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: cramtick70

GASF GIAC Advanced Smartphone Forensics Questions and Answers

Questions 4

Cellebrite Physical Analyzer uses Bit Defender to scan for malware by flagging files who have known bad hash values. This is an example of which type of mobile malware detection?

Options:

A.

Specific-based malware detection

B.

Signature-based detection

C.

Behavioral-based detection

D.

Cloud based malware detection

Buy Now
Questions 5

Examine the file, Bluetooth, what is the name of the device being examined?

Options:

A.

CON

B.

WIN7

C.

CON….M

D.

WIN10

Buy Now
Questions 6

What is the extension used for BlackBerry 10 backup files?

Options:

A.

.APK

B.

.BBB

C.

.ZIP

D.

.IPD

Buy Now
Questions 7

Review the information contained within the Viber application running on an Android device. Which of the

following can be determined?

Options:

A.

A message containing the string8901260572525158741was sent using the Viber application.

B.

The Viber account used to send/receive messages can be tied to the user in possession of the SIM cardwith an IMSI of 8901260572525158741

C.

The user account for Viber is 8901260572525158741

D.

The Viber account used to send/receive messages can be tied to the user in possession of the SIM cardwith an ICCID of 8901260572525158741

Buy Now
Questions 8

During the forensic analysis of a Nokia Symbian phone, you receive a SD card with files in the Nokia\Content

Copier folder. What data is present to examine?

Options:

A.

Encryption keys

B.

User created images

C.

Logon credentials

D.

Backup files

Buy Now
Questions 9

The files pictured below from a BlackBerry OS10 file system have a unique file extension.

What can be concluded about these files?

Options:

A.

Files are protected by the file system, so changing the file system makes them less accessible

B.

Files are encrypted to prevent them from being viewed without the decryption key

C.

Files are encoded for secure transmitting of data

D.

Files are located on a media card so they contain a unique file extension

Buy Now
Questions 10

Analyze the two tables (Albums and Photos) provided from the Facebook database on an Android device

located at the path: /data/data/com.facebook.katana/databases/fb.db.

Which photo was added to Facebook by the user of the device?

Options:

A.

106716779501997_1073741827

B.

100003042564055_1073741835

C.

100005241790123_1073741832

D.

100006274086300_1073741835

Buy Now
Questions 11

While conducting forensic analysis of an associated media card, one would most often expect to find this particular file system format?

Options:

A.

HFS

B.

NTFS

C.

Yaffs2

D.

FAT

Buy Now
Exam Code: GASF
Exam Name: GIAC Advanced Smartphone Forensics
Last Update: Dec 27, 2024
Questions: 75
GASF pdf

GASF PDF

$25.5  $84.99
GASF Engine

GASF Testing Engine

$30  $99.99
GASF PDF + Engine

GASF PDF + Testing Engine

$40.5  $134.99