Fast Automated Unpacking and Classification of Malware
- Type
- Slides
- Tags
- malware, malware analysis, obfuscation
- Authors
- Silvio Cesare
- Event
- Ruxcon 2010
- Indexed on
- Mar 26, 2013
- URL
- http://www.ruxcon.org.au/assets/Presentations/silvio-cesare.malware-masters.2010.pdf
- File name
- silvio-cesare.malware-masters.2010.pdf
- File size
- 675.7 KB
- MD5
- 8340be60ace51cf9c9d5f3660fc314a8
- SHA1
- cc2157c866eaf30f1c205044cbf006433a33c4ef
Silvio developed a signature based Malware detection system using control flow graphs as features for his Masters work. Two academic papers were published during this time. He continues the work on malware classification in his PhD. The work is distinguished from previous research by being able to approach the speed and efficiency of traditional Antivirus, yet with the significantly increased effectiveness of using control flow based signatures. Control flow is seen a more accurate identifier of malware variants and relies on fingerprinting program structure instead of the byte-level content. The system is designed to scale for potential applications including desktop Antivirus, E-Mail and Internet gateways.
About us
Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.
Statistics
Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.
Contribute
To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.
