메뉴 건너뛰기




Volumn , Issue , 2009, Pages

Generic unpacking techniques

Author keywords

Dynamic analysis; Emulation; Generic unpacking; Malware; Obfuscation; Virtual machines

Indexed keywords

EMULATION; GENERIC UNPACKING; MALWARE; OBFUSCATION; VIRTUAL MACHINES;

EID: 70349155383     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/IC4.2009.4909168     Document Type: Conference Paper
Times cited : (15)

References (33)
  • 2
    • 33646414637 scopus 로고    scopus 로고
    • Feb 3. Chap 11, [Online] Available
    • Peter Szor (2005, Feb 3). "Art of Computer Virus Research and Defence", Chap 11, [Online] Available: http://safari.oreilly.com/ 0321304543/ch15lev1sec4.
    • (2005) Art of Computer Virus Research and Defence
    • Szor, P.1
  • 3
    • 70349127450 scopus 로고    scopus 로고
    • Botnet Tracking: Tools Techniques and Lessons Learned
    • presented at
    • Dr. Jose Nazairo, "Botnet Tracking: Tools Techniques and Lessons Learned", presented at Lockdown 2007 University of Wisconsin-Madison, page 12.
    • Lockdown 2007 University of Wisconsin-Madison , pp. 12
    • Nazairo, J.1
  • 4
    • 70349156540 scopus 로고    scopus 로고
    • Counterattacking the packers
    • presented at
    • Gaith Taha, "Counterattacking the packers", presented at AVAR 2007 Conference in Seoul, page 1.
    • AVAR 2007 Conference in Seoul , pp. 1
    • Taha, G.1
  • 5
    • 57949115209 scopus 로고    scopus 로고
    • Covert Debugging: Circumventing Software Armoring Techniques
    • presented at
    • Danny Quist and Valsmith, "Covert Debugging: Circumventing Software Armoring Techniques", presented at Black Hat Briefings USA August 2007, page 1-2.
    • Black Hat Briefings USA August 2007 , pp. 1-2
    • Quist, D.1    Valsmith2
  • 6
    • 70349135230 scopus 로고    scopus 로고
    • Decompression of run-time compressed PE-files
    • presented at Slovak University of Technology, Faculty of Informatics and Information Technologies
    • Miroslav Vnuk and Pavol Navrat, "Decompression of run-time compressed PE-files.", presented at IIT.SRC 2006 - Student Research Conference, Slovak University of Technology, Faculty of Informatics and Information Technologies, page 2-4.
    • IIT.SRC 2006 - Student Research Conference , pp. 2-4
    • Vnuk, M.1    Navrat, P.2
  • 8
    • 70349121456 scopus 로고    scopus 로고
    • Edith Cowan University, Mount Lawley Campus [Online] Available
    • rd December 2007, Edith Cowan University, Mount Lawley Campus. Page 67, [Online] Available: http://scissec.scis.ecu.edu.au/conference-proceedings/ 2007/forensics/00-Forensics2007-Complete-Proceedings.pdf
    • rd December 2007 , pp. 67
  • 9
    • 70349143795 scopus 로고    scopus 로고
    • File Analysis
    • US Patent US 2004/0236884 A1, Nov. 25, 2004
    • Andreas Beetz, "File Analysis", US Patent US 2004/0236884 A1, Nov. 25, 2004.
    • Beetz, A.1
  • 11
    • 38449103221 scopus 로고    scopus 로고
    • Diplomarbeit, Technische Universität München
    • Johannes Kinder , "Model Checking Malicious Code", Diplomarbeit, Technische Universität München, 2005.
    • (2005) Model Checking Malicious Code
    • Kinder, J.1
  • 16
    • 70349122266 scopus 로고    scopus 로고
    • Generic Unpacking How to handle modified or unknown PE Compression Engines
    • presented at
    • Tobias Graf, "Generic Unpacking How to handle modified or unknown PE Compression Engines" presented at Virus. Bulletin Conference 2005.
    • Virus. Bulletin Conference 2005
    • Graf, T.1
  • 20
    • 70349099745 scopus 로고    scopus 로고
    • [Online] Available
    • Norman SandBox Whitepaper, [Online] Available: http://www.norman.com/ Download/White-papers/en, page 14.
  • 25
    • 70349127021 scopus 로고    scopus 로고
    • Anti-unpack Tricks in Malicious Code
    • Security Labs, Websense Inc. presented in
    • Xiaodong Tan, "Anti-unpack Tricks in Malicious Code", Security Labs, Websense Inc. presented in AVAR 2007, Seoul. Page 5-29.
    • AVAR 2007, Seoul , pp. 5-29
    • Tan, X.1
  • 30
    • 70349138178 scopus 로고    scopus 로고
    • PECompact2
    • Bitsum Technologies. PECompact2. http://www.bitsum.com/pec2.asp.
  • 31
    • 70349151080 scopus 로고    scopus 로고
    • Obsidium Software
    • Obsidium Software, http://www.obsidium.de/show.php?home
  • 32
    • 70349141938 scopus 로고    scopus 로고
    • Teggo. MoleBox Pro
    • Teggo. MoleBox Pro, http://www.molebox.com/download.shtml
  • 33
    • 70349150270 scopus 로고    scopus 로고
    • Silicon Realms Toolworks. Armadillo
    • Silicon Realms Toolworks. Armadillo,


* 이 정보는 Elsevier사의 SCOPUS DB에서 KISTI가 분석하여 추출한 것입니다.