V2E: Combining Hardware Virtualization and Software Emulation for Transparent and Extensible Malware Analysis

Download Now
Provided by: Air Force Research Laboratory
Topic: Virtualization
Format: PDF
A transparent and extensible malware analysis platform is essential for defeating malware. This platform should be transparent so malware cannot easily detect and bypass it. It should also be extensible to provide strong support for heavyweight instrumentation and analysis efficiency. However, no existing platform can meet both requirements. Leveraging hardware virtualization technology, analysis platforms like Ether can achieve good transparency, but its instrumentation support and analysis efficiency are weak. In contrast, software emulation provides strong support for code instrumentation and good analysis efficiency by using dynamic binary translation.
Download Now

Find By Topic