Please use this identifier to cite or link to this item: http://repositorio.unicamp.br/jspui/handle/REPOSIP/107963
Type: Artigo de evento
Title: Visualization Techniques For Malware Behavior Analysis
Author: Gregio A.R.A.
Santos R.D.C.
Abstract: Malware spread via Internet is a great security threat, so studying their behavior is important to identify and classify them. Using SSDT hooking we can obtain malware behavior by running it in a controlled environment and capturing interactions with the target operating system regarding file, process, registry, network and mutex activities. This generates a chain of events that can be used to compare them with other known malware. In this paper we present a simple approach to convert malware behavior into activity graphs and show some visualization techniques that can be used to analyze malware behavior, individually or grouped. © 2011 SPIE.
Editor: 
Rights: aberto
Identifier DOI: 10.1117/12.883441
Address: http://www.scopus.com/inward/record.url?eid=2-s2.0-79960106015&partnerID=40&md5=f717064474fa9a4ff3f1d21147823b0d
Date Issue: 2011
Appears in Collections:Unicamp - Artigos e Outros Documentos

Files in This Item:
File SizeFormat 
2-s2.0-79960106015.pdf1.86 MBAdobe PDFView/Open


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.