Metamorphic worm that carries its own morphing engine
S Madenur Sridhara, M Stamp - Journal of Computer Virology and …, 2013 - Springer
Metamorphic malware changes its internal structure across generations, but its functionality
remains unchanged. Well-designed metamorphic malware will evade signature detection …
remains unchanged. Well-designed metamorphic malware will evade signature detection …
A similarity metric method of obfuscated malware using function-call graph
Code obfuscating technique plays a significant role to produce new obfuscated malicious
programs, generally called malware variants, from previously encountered malwares …
programs, generally called malware variants, from previously encountered malwares …
Metamorphic detection using function call graph analysis
P Deshpande - 2013 - scholarworks.sjsu.edu
Well-designed metamorphic malware can evade many commonly used malware detection
techniques including signature scanning. In this research, we consider a score based on …
techniques including signature scanning. In this research, we consider a score based on …
Visualization techniques for malware behavior analysis
ARA Grégio, RDC Santos - Sensors, and Command, Control …, 2011 - spiedigitallibrary.org
Malware spread via Internet is a great security threat, so studying their behavior is important
to identify and classify them. Using SSDT hooking we can obtain malware behavior by …
to identify and classify them. Using SSDT hooking we can obtain malware behavior by …
Ecfgm: enriched control flow graph miner for unknown vicious infected code detection
M Eskandari, S Hashemi - Journal in Computer Virology, 2012 - Springer
Vicious codes, especially viruses, as a kind of impressive malware have caused many
disasters and continue to exploit more vulnerabilities. These codes are injected inside …
disasters and continue to exploit more vulnerabilities. These codes are injected inside …
A graph theoretic approach to fast and accurate malware detection
Due to the unavailability of signatures for previously unknown malware, non-signature
malware detection schemes typically rely on analyzing program behavior. Prior behavior …
malware detection schemes typically rely on analyzing program behavior. Prior behavior …
Using a novel behavioral stimuli-response framework to defend against adversarial cyberspace participants
D Bilar, B Saltaformaggio - 2011 3rd International Conference …, 2011 - ieeexplore.ieee.org
Autonomous Baiting, Control and Deception of Adversarial Cyberspace Participants (ABCD-
ACP) is an experimental defensive framework against potentially adversarial cyberspace …
ACP) is an experimental defensive framework against potentially adversarial cyberspace …
'Weird machine'patterns
You do not understand how your program really works until it has been exploited. We
believe that computer scientists and software engineers should regard the activity of modern …
believe that computer scientists and software engineers should regard the activity of modern …
Formal models of reproduction: from computer viruses to artificial life
M Webster - 2008 - livrepository.liverpool.ac.uk
In this thesis we describe novel approaches to the formal description of systems which
reproduce, and show that the resulting models have explanatory power and practical …
reproduce, and show that the resulting models have explanatory power and practical …