[PDF][PDF] Statistical structures: Fingerprinting malware for classification and analysis
D Bilar - Proceedings of Black Hat Federal 2006, 2006 - academia.edu
Proceedings of Black Hat Federal 2006, 2006•academia.edu
Statically disassemble the binary, tabulate the opcode frequencies and construct a statistical
fingerprint with a subset of said opcodes. Goal: Compare opcode fingerprint across
nonmalicious software and malware classes for quick identification and classification
purposes. Main result:'Rare'opcodes explain more data variation then common ones
fingerprint with a subset of said opcodes. Goal: Compare opcode fingerprint across
nonmalicious software and malware classes for quick identification and classification
purposes. Main result:'Rare'opcodes explain more data variation then common ones
Synopsis
Statically disassemble the binary, tabulate the opcode frequencies and construct a statistical fingerprint with a subset of said opcodes.
Goal: Compare opcode fingerprint across nonmalicious software and malware classes for quick identification and classification purposes.
Main result:‘Rare’opcodes explain more data variation then common ones
academia.edu
以上显示的是最相近的搜索结果。 查看全部搜索结果