A security analyst receives an alert categorized as suspicious activity after a standard user downloaded a .pdf file from a marketing website. The following occurred in sequential order: (details described). Which of the following best describes this type of attack?

Rootkits are stealthy types of malicious software designed to gain unauthorized access to a system while concealing their presence. They typically aim to maintain long-term control over the compromised system without being detected. In this scenario, the focus is on the deceptive nature of the file downloaded by the user, rather than on establishing persistent control as rootkits do.

Worms are self-replicating malware that spread across networks and systems, typically without requiring user interaction. Unlike Trojans, worms do not rely on deception to propagate and can independently move through a network to infect other connected devices. The scenario involving a user-initiated download does not align with the autonomous and network-based nature of worm attacks.

A logic bomb is a piece of code intentionally inserted into software to execute a malicious function when specific conditions are met. These conditions could be based on a certain date, time, or triggered event. In the scenario provided, the focus is on the deceptive nature of the downloaded file rather than on a pre-set condition triggering a malicious action, which is characteristic of a logic bomb.