Malwise System for Packed and Polymorphic Malware

Download Now
Provided by: The World
Topic: Security
Format: PDF
Signature based malware detection systems have been a much used response to the pervasive problem of malware. Identification of malware variants is essential to a detection system and is made possible by identifying invariant characteristics in related samples. To classify the packed and polymorphic malware, this paper proposes a novel system, named malwise, for malware classification using a fast application level emulator to reverse the code packing transformation, and two flow graph matching algorithms to perform classification. An exact flow graph matching algorithm is employed that uses string based signatures, and is able to detect malware with near real-time performance.
Download Now

Find By Topic