Similarity-based Polymorphic Shellcode Detection
In the work the method for polymorphic shellcode dedection based on the set of known shellcodes is proposed. The method’s main idea is in sequential applying of deobfuscating transformations to a data analyzed and then recognizing similarity with malware samples. The method has been tested on the se...
Main Authors: | Denis Yurievich Gamayunov, Anastasia Alekseevna Skovoroda (Shcherbinina) |
---|---|
Format: | Article |
Language: | English |
Published: |
Joint Stock Company "Experimental Scientific and Production Association SPELS
2013-02-01
|
Series: | Безопасность информационных технологий |
Subjects: | |
Online Access: | https://bit.mephi.ru/index.php/bit/article/view/352 |
Similar Items
-
Detection of Obfuscated Javascript Code Based on Abstract Syntax Trees Coloring
by: G. S. Ponomarenko, et al.
Published: (2020-06-01) -
Anti-obfuscation Android application similarity detection method based on API call
by: GU Jieming, SUN Bowen, LI Qi, GUO Yanhui, et al.
Published: (2018-01-01) -
Metrics for code obfuscation based on symbolic execution and N-scope complexity
by: Yuqiang XIAO, Yunfei GUO, Yawen WANG
Published: (2022-12-01) -
On the Non-Existence of Blockwise 2-Local PRGs with Applications to Indistinguishability Obfuscation
by: Lombardi, Alex, et al.
Published: (2017) -
Automatic Deobfuscation of VM-protected Programs
by: Evgenyi Ivanovich Goncharov
Published: (2013-02-01)