Statistical Study of Imported APIs by PE Type Malware

机译：PE类型恶意软件对进口原料药的统计研究

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

In this paper we introduce a statistical study which enable us to know which are Windows APIs that are most imported by malware codes. To do that, we have used a given number of infected Portable Executable (PE) files and another number of none infected ones. We used statistical Khi test to set if an API is likely used by malware or not. We guess that a given work is necessary and important for behavior-based malware detection, especially which use API importations to analyze PE codes. For experimentation purpose, we have used a large set of PE files extracted from known databases to perform our analysis and establish our conclusions.

机译：在本文中，我们介绍了一项统计研究，使我们能够了解哪些Windows API最受恶意软件代码导入。为此，我们使用了给定数量的受感染可移植可执行文件（PE），以及另外一些未受感染的文件。我们使用统计Khi测试来设置API是否可能被恶意软件使用。我们猜测，给定的工作对于基于行为的恶意软件检测是必要且重要的，尤其是使用API导入来分析PE代码的工作。为了进行实验，我们使用了从已知数据库中提取的大量PE文件来进行分析和得出结论。

著录项

来源
《2014 International conference on advanced networking distributedystems and applications》|2014年|82-86|共5页
会议地点 Bejaia(DZ)
作者
Belaoued M.; Mazouzi S.;
展开▼
作者单位

Dept. of Comput. Sci., Univ. 20 Aout 1955, Skikda, Algeria;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
application program interfaces; invasive software; operating systems (computers); statistical testing; API importations; PE type malware; Windows API; behavior-based malware detection; infected portable executable files; malware codes; statistical Khisup2/sup test; statistical study; Computers; Data mining; Malware; Operating systems; Testing; Malware; Malware analysis; Statistical hypothesis testing; windows API;

机译：应用程序接口；入侵软件；操作系统（计算机）；统计测试； API导入； PE类型恶意软件； Windows API；基于行为的恶意软件检测；感染的便携式可执行文件；恶意软件代码；统计Khi ^{2 测试;统计研究;计算机;数据挖掘;恶意软件;操作系统;测试;恶意软件;恶意软件分析;统计假设测试; Windows API;;}

相似文献

外文文献
中文文献
专利

1. ASSCA: API sequence and statistics features combined architecture for malware detection [J] . Lu Xiaofeng, Jiang Fangshuo, Zhou Xiao, Computer networks . 2019,第JULa5期

机译：ASSCA：API序列和统计功能结合了用于恶意软件检测的架构
2. ASSCA: API based Sequence and Statistics features Combined malware detection Architecture [J] . Lu Xiaofeng, Zhou Xiao, Jiang Fangshuo, Procedia Computer Science . 2018,第47期

机译：ASSCA：基于API的序列和统计功能结合了恶意软件检测架构
3. ASSCA: API based Sequence and Statistics features Combined malware detection Architecture [J] . Lu Xiaofeng, Zhou Xiao, Jiang Fangshuo, Procedia Computer Science . 2018,第22期

机译：ASSCA：基于API的序列和统计功能结合了恶意软件检测架构
4. Statistical Study of Imported APIs by PE Type Malware [C] . Belaoued M., Mazouzi S. International conference on advanced networking distributedystems and applications . 2014

机译：PE型恶意软件对导入API的统计研究
5. An Empirical Study on Discovering a New Self-Admitted Technical Debt Type - API-Debt [D] . Aljohani, Ahmed. 2019

机译：发现一种新的自我承认的技术债务类型-API债务的实证研究
6. Comparative study on the dynamics and performances of Apis mellifera jemenitica and imported hybrid honeybee colonies in southwestern Saudi Arabia [O] . Ahmad A. Al-Ghamdi, Nuru Adgaba, Yilma Tadesse, 2017

机译：沙特阿拉伯西南蜜蜂和进口杂交蜜蜂群体的动态和性能比较研究
7. Malware Analysis Mechanism using the Word Cloud based on API Statistics [O] . Sung-Tae Yu, Soo-Hyun Oh 2015

机译：使用基于API统计的恶意软件分析机制

Statistical Study of Imported APIs by PE Type Malware

摘要

著录项

相似文献

相关主题

期刊订阅