SWF and the Malware Tragedy: Detecting Malicious Adobe Flash Files

Security of Adobe Flash based Rich Internet Applications (RIA) has become a subject for many concerns over the last year. Numerous tools for decompiling, disassembling and analysis are available, although most of them are not intended be used for security-related analysis. The recent attacks supplying malicious banner ads through high profile web sites are an example how easy it is to reach a large number of targets with relatively primitive techniques such as redirects from within a Flash banner. This paper is focused on the detection of malicious SWF files.