RETROFITTING MOBILE DEVICES FOR CAPTURING MEMORY-RESIDENT MALWARE BASED ON SYSTEM SIDE-EFFECTS

机译：改装移动设备，用于基于系统副作用捕获内存驻留恶意软件

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Sophisticated memory-resident malware that target mobile phone platforms can be extremely difficult to detect and capture. However, triggering volatile memory captures based on observable system side-effects exhibited by malware can harvest live memory that contains memory-resident malware. This chapter describes a novel approach for capturing memory-resident malware on an Android device for future analysis. The approach is demonstrated by making modifications to the Android debuggerd daemon to capture memory while a vulnerable process is being exploited on a Google Nexus 5 phone. The implementation employs an external hardware device to store a memory capture after successful exfiltration from the compromised mobile device.

机译：主控移动电话平台的复杂内存驻留恶意软件可能非常难以检测和捕获。但是，基于恶意软件展示的可观察系统副作用触发易失性存储器捕获可以收集包含内存驻留恶意软件的现场存储器。本章介绍了一种新颖的方法，用于在Android设备上捕获内存驻留恶意软件以备将来分析。通过对Android Debuggerd守护程序进行修改来捕获内存的同时，在谷歌Nexus 5手机上利用易受攻击的过程，可以对该方法进行说明。该实现采用外部硬件设备在从受损移动设备成功exfiltation之后存储内存捕获。

著录项

来源
《IFIP WG 11.9 International Conference on Digital Forensics》|2019年|xviii 272 pages :|共14页
会议地点
作者
Zachary Grimmett; Jason Staggs; Sujeet Shenoi;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 D918-532;
关键词
Mobile device malware; system side-effects; memory capture;

机译：移动设备恶意软件;系统副作用;记忆捕获;

相似文献

外文文献
中文文献
专利

1. Cloud-Based Malware Detection Game for Mobile Devices with Offloading [J] . Liang Xiao, Yanda Li, Xueli Huang, IEEE transactions on mobile computing . 2017,第10期

机译：适用于具有卸载功能的移动设备的基于云的恶意软件检测游戏
2. Enhanced Permission Based Malware Detection in Mobile Devices Using Optimized Random Forest Classifier with PSO-GA [J] . M. Sujithra, G. Padmavathi Research journal of applied science, engineering and technology . 2016,第7期

机译：使用带有PSO-GA的优化随机森林分类器的增强型基于权限的移动设备恶意软件检测
3. Enhanced Permission Based Malware Detection in Mobile Devices Using Optimized Random Forest Classifier with PSO-GA [J] . M. Sujithra, G. Padmavathi Research journal of applied science, engineering and technology . 2016,第7期

机译：使用带有PSO-GA的优化随机森林分类器的增强型基于权限的移动设备恶意软件检测
4. RETROFITTING MOBILE DEVICES FOR CAPTURING MEMORY-RESIDENT MALWARE BASED ON SYSTEM SIDE-EFFECTS [C] . Zachary Grimmett, Jason Staggs, Sujeet Shenoi IFIP WG 11.9 International Conference on Digital Forensics . 2019

机译：基于系统副作用的移动设备捕获内存恶意软件
5. Data Collection in Field-Based Environments with Alternative Mobile Devices Using Mobile Geographic Information Systems and Services for Quality Flexible Platforms [D] . Wood, Scott Leslie. 2016

机译：使用移动地理信息系统和服务的优质移动平台在具有备用移动设备的现场环境中收集数据
6. Effectiveness of a Voice-Based Mental Health Evaluation System for Mobile Devices: Prospective Study [O] . Masakazu Higuchi, Mitsuteru Nakamura, Shuji Shinohara, 2020

机译：移动设备语音心理健康评估系统的有效性：前瞻性研究
7. Development and Evaluation of Low-load Malware Detection Systems for Mobile Devices [O] . 村松聖也 2012

机译：移动设备低负载恶意软件检测系统的开发和评估

RETROFITTING MOBILE DEVICES FOR CAPTURING MEMORY-RESIDENT MALWARE BASED ON SYSTEM SIDE-EFFECTS

摘要

著录项

相似文献

相关主题

期刊订阅