Visualization techniques for malware behavior analysis

机译：恶意软件行为分析的可视化技术

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Malware spread via Internet is a great security threat, so studying their behavior is important to identify and classify them. Using SSDT hooking we can obtain malware behavior by running it in a controlled environment and capturing interactions with the target operating system regarding file, process, registry, network and mutex activities. This generates a chain of events that can be used to compare them with other known malware. In this paper we present a simple approach to convert malware behavior into activity graphs and show some visualization techniques that can be used to analyze malware behavior, individually or grouped

机译：通过Internet传播的恶意软件是一个巨大的安全威胁，因此研究其行为对于识别和分类它们很重要。使用SSDT挂钩，我们可以通过在受控环境中运行恶意软件行为并捕获与目标操作系统有关文件，进程，注册表，网络和互斥锁活动的交互来获取恶意软件行为。这会生成一系列事件，可用于将它们与其他已知恶意软件进行比较。在本文中，我们提供了一种将恶意软件行为转换为活动图的简单方法，并展示了一些可视化技术，可用于单独或分组分析恶意软件行为

著录项

来源
《Sensors, and command, control, communications, and intelligence (C3I) technologies for homeland security and homeland defense X》|2011年|p.1-9|共9页
会议地点 Orlando FL(US)
作者
André R. A. Grégio; Rafael D.C. Santos;
展开▼
作者单位

CTI/MCT (Brazil);

Univ. of Campinas (Brazil);

INPE/MCT (Brazil);

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类无线电电子学的应用;战略进攻与防御;
关键词

相似文献

外文文献
中文文献
专利

1. MalDy: Portable, data-driven malware detection using natural language processing and machine learning techniques on behavioral analysis reports [J] . Karbab ElMouatez Billah, Debbabi Mourad Digital investigation . 2019,第APRa期

机译：MalDy：使用自然语言处理和机器学习技术对行为分析报告进行便携式，数据驱动的恶意软件检测
2. ARCHITECTURE OF MALWARE TRACKER VISUALIZATION FOR MALWARE ANALYSIS [J] . CHAN LEE YEE, MAHAMOD ISMAIL, NASHARUDDIN ZAINAL, Journal of Theoretical and Applied Information Technology . 2013,第1期

机译：用于恶意软件分析的恶意软件跟踪器可视化架构
3. ARCHITECTURE OF MALWARE TRACKER VISUALIZATION FOR MALWARE ANALYSIS [J] . CHAN LEE YEE, MAHAMOD ISMAIL, NASHARUDDIN ZAINAL, Journal of Theoretical and Applied Information Technology . 2013,第1期

机译：用于恶意软件分析的恶意软件跟踪器可视化架构
4. Visualization techniques for malware behavior analysis [C] . André R. A. Grégio and Rafael D.C. Santos Conference on Sensors, and command, control, communications, and intelligence (C3I) technologies for homeland security and homeland defense . 2011

机译：恶意软件行为分析的可视化技术
5. Developing Profiles of Malware and User Behaviors Using Graph-Mining and Machine Learning Techniques. [D] . Hang, Huy Nhut. 2014

机译：使用图挖掘和机器学习技术开发恶意软件和用户行为的配置文件。
6. Malware Analysis Using Visualized Image Matrices [O] . KyoungSoo Han, BooJoong Kang, Eul Gyu Im -1

机译：使用可视化图像矩阵进行恶意软件分析
7. Visualization techniques for malware behavior analysis [O] . Gregio, André Ricardo Abed, Santos, Rafael Duarte Coelho dos 2011

机译：恶意软件行为分析的可视化技术

Visualization techniques for malware behavior analysis

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅