A Discrete Event System Based Approach for Obfuscated Malware Detection

机译：基于离散事件系统的混淆恶意软件检测方法

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

With the growing use and popularity of Internet among people, security threats such as viruses, worms etc., are also rapidly increasing. In order to detect and prevent such threats, many antivirus softwares have been created. Signature matching approach used to detect malwares can be easily thwarted by using code obfuscation techniques. In this paper, we propose a discrete event systems-based approach to detect obfuscated malwares in a system, taking Bagle. A as our test virus. Commonly used obfuscation techniques have been applied to bagle. We built DES models for a process under attack and normal conditions with system calls as events. Based on the system calls evoked by any process, our detector will determine its maliciousness by comparing it with both the models.

机译：随着人们之间不断增长和互联网的普及，病毒，蠕虫等的安全威胁也在迅速增加。为了检测和防止这种威胁，已经创建了许多防病毒软件。使用代码混淆技术可以轻松挫败用于检测恶意的签名匹配方法。在本文中，我们提出了一种基于离散的事件系统的方法来检测系统中的混淆恶意，以摇头。 a作为我们的测试病毒。常用的混淆技术已应用于袋子。我们构建了在攻击下的进程的模型以及系统调用作为事件的正常情况。根据任何过程引起的系统调用，我们的探测器将通过与模型进行比较来确定其恶意。

著录项

来源
《International Conference on Communication and Computer Engineering》|2015年||共14页
会议地点
作者
Chinmaya K. Patanaik; Ferdous A. Barbhuiya; Santosh Biswas; Sukumar Nandi;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类通信;
关键词
Discrete event systems; ClamAV; DDoS; Malwares;

机译：离散事件系统;Clamav;DDOS;恶魔;

相似文献

外文文献
中文文献
专利

1. DRLDO A Novel DRL based De obfuscation System for Defence Against Metamorphic Malware [J] . Mohit Sewak, Sanjay K. Sahay, Hemant Rathore Defence science journal . 2021,第1期

机译：DRLDO基于新的DRL DE混淆系统，用于防御变质恶意软件
2. DRLDO: A Novel DRL based De-obfuscation System for Defence Against Metamorphic Malware [J] . Sewak Mohit, Sahay Sanjay K., Rathore Hemant Defence Science Journal . 2021,第1期

机译：DRLDO：一种基于DRL的DRL DE-OFFUSCONATION系统，用于防御变质恶意软件
3. Metamorphic malware detection using base malware identification approach [J] . Mahawer Devendra Kumar, Nagaraju A. Security and Communications Networks . 2014,第11期

机译：使用基本恶意软件识别方法检测变形的恶意软件
4. A Discrete Event System Based Approach for Obfuscated Malware Detection [C] . Chinmaya K. Patanaik, Ferdous A. Barbhuiya, Santosh Biswas, International Conference on Communication and Computer Engineering . 2015

机译：基于离散事件系统的模糊恶意软件检测方法
5. Testability of a swarm robot using a System of Systems approach and discrete event simulation. [D] . Hosking, Matthew R. 2009

机译：使用系统方法和离散事件模拟的群体机器人的可测试性。
6. Obfuscation of Malicious Behaviors for Thwarting Masquerade Detection Systems Based on Locality Features [O] . Jorge Maestre Vidal, Marco Antonio Sotelo Monge 2020

机译：基于局部特征的节制化装检测系统的恶意行为混淆
7. Impact of Code Obfuscation on Android Malware Detection based on Static and Dynamic Analysis [O] . Alessandro Bacci, Alberto Bartoli, Fabio Martinelli, 2018

机译：代码混淆对基于静态和动态分析的Android恶意软件检测的影响

A Discrete Event System Based Approach for Obfuscated Malware Detection

摘要

著录项

相似文献

相关主题

期刊订阅