Detecting Derivative Malware Samples Using Deobfuscation-Assisted Similarity Analysis
نویسندگان
چکیده
منابع مشابه
Malware Similarity Analysis using API Sequence Alignments
Malware variants could be defined as malware that have similar malcious behavior. In this paper, a sequence alignment method, the method widely used in Bioinformatics, was used to detect malware variants. This method can find the common parts of Malware’s API call sequences, and these common API call sequences can be used to detect similar behaviors of malware variants. However, when a sequence...
متن کاملAutomatically Detecting and Removing Malware Using Dynamic Analysis Systems
This paper presents a system that detects unknown malware in user PCs, and automatically creates tools that restore the PCs to the pre-infection states. This system incorporates with dynamic malware analysis systems to detect malware, and creates remediation tools based on the analysis reports. Using the behavior information in the reports, the remediation tools not only delete the malware, but...
متن کاملThe Software Similarity Problem in Malware Analysis
In software engineering contexts software may be compared for similarity in order to detect duplicate code that indicates poor design, and to reconstruct evolution history. Malicious software, being nothing other than a particular type of software, can also be compared for similarity in order to detect commonalities and evolution history. This paper provides a brief introduction to the issue of...
متن کاملDetecting Pdf Javascript Malware Using Clone Detection
.............................................................................................................................. ii Co-Authorship.................................................................................................................... iii List of Figures ................................................................................................................... v...
متن کاملDetecting Environment-Sensitive Malware
The execution of malware in an instrumented sandbox is a widespread approach for the analysis of malicious code, largely because it sidesteps the difficulties involved in the static analysis of obfuscated code. As malware analysis sandboxes increase in popularity, they are faced with the problem of malicious code detecting the instrumented environment to evade analysis. In the absence of an “un...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: SAIEE Africa Research Journal
سال: 2016
ISSN: 1991-1696
DOI: 10.23919/saiee.2016.8531543