SCOPUS 정보 검색 플랫폼

2011 IEEE International Conference on Technologies for Homeland Security, HST 2011

Volumn , Issue , 2011, Pages 396-401

Defining malware families based on analyst insights

(2) Gennari, Jeff a French, David a

a CARNEGIE MELLON UNIVERSITY (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ANALYTIC METHOD; ANTI VIRUS; BLIND CLASSIFICATION; BLOOM FILTERS; COMPLEX PROCESSES; CYBER-ATTACKS; HOST-BASED; MALICIOUS CODES; MALICIOUS-CODE ANALYSIS; MALWARES; OBJECTIVE CRITERIA; ROADMAP; SIGNATURE GENERATION; SIMILARITY MEASUREMENTS; STRUCTURAL INFORMATION;

CODES (SYMBOLS); FUZZY FILTERS; NETWORK SECURITY; SECURITY SYSTEMS; SEMANTICS;

COMPUTER CRIME;

EID: 84855800908 PISSN: None EISSN: None Source Type: Conference Proceeding
DOI: 10.1109/THS.2011.6107902 Document Type: Conference Paper

Times cited : (7)

References (21)

1
- 33745306074
- February. [Online]
- M. Schmall, "Heuristic techniques in av solutions: An overview," February 2002. [Online]. Available: http://www.symantec.com/ connect/articles/heuristic-techniques-avsolutions-overview
- (2002) Heuristic Techniques in Av Solutions: An Overview
- Schmall, M.¹

2
- 38149089416
- Automated classification and analysis of internet malware
- ser. Lecture Notes in Computer Science, C. Krügel, R. Lippmann, and A. Clark, Eds. Springer
- M. Bailey, J. Oberheide, J. Andersen, Z. M. Mao, F. Jahanian, and J. Nazario, "Automated classification and analysis of internet malware," in RAID, ser. Lecture Notes in Computer Science, C. Krügel, R. Lippmann, and A. Clark, Eds., vol. 4637. Springer, 2007, pp. 178-197.
- (2007) RAID , vol.4637 , pp. 178-197
- Bailey, M.¹ Oberheide, J.² Andersen, J.³ Mao, Z.M.⁴ Jahanian, F.⁵ Nazario, J.⁶

3
- 84855775640
- December. [Online]
- K. Timm, "The effectiveness of antivirus on new malware samples," December 2008. [Online]. Available: http://blogs.cisco.com/ security/the-effectiveness-of-antivirus-on-new-malware-samples
- (2008) The Effectiveness of Antivirus on New Malware Samples
- Timm, K.¹

4
- 80955164889
- Cylab, Carnegie Mellon University, Pittsburgh, PA, Technical Report CMU-Cylab-10-022, May
- J. Jang, D. Brumley, and S. Venkataraman, "Bitshred: Fast, scalable malware triage," Cylab, Carnegie Mellon University, Pittsburgh, PA, Technical Report CMU-Cylab-10-022, May 2010.
- (2010) Bitshred: Fast, Scalable Malware Triage
- Jang, J.¹ Brumley, D.² Venkataraman, S.³

5
- 52249094557
- Identifying almost identical files using context triggered piecewise hashing
- J. D. Kornblum, "Identifying almost identical files using context triggered piecewise hashing," Digital Investigation, vol. 3, no. Supplement-1, pp. 91-97, 2006.
- (2006) Digital Investigation , vol.3 , Issue.SUPPL. 1 , pp. 91-97
- Kornblum, J.D.¹

6
- 84855768844
- April. [Online]
- D. Ninja, "Fuzzy clarity: Using fuzzy hashing techniques to identify malicious code," April 2007. [Online]. Available: http://www. digitalninjitsu.com/downloads/Fuzzy-Clarity-rev1.pdf
- (2007) Fuzzy Clarity: Using Fuzzy Hashing Techniques to Identify Malicious Code
- Ninja, D.¹

7
- 54849432819
- E. Carerra and G. Erdélyi, "Digital genome mapping - advanced binary malware analysis," pp. 323-334, 2004.
- (2004) Digital Genome Mapping - Advanced Binary Malware Analysis , pp. 323-334
- Carerra, E.¹ Erdélyi, G.²

8
- 74049142314
- Large-scale malware indexing using function-call graphs
- X. Hu, T. Chiueh, and K. G. Shin, "Large-scale malware indexing using function-call graphs," in Computer and Communications Security, 2009, pp. 611-620.
- (2009) Computer and Communications Security , pp. 611-620
- Hu, X.¹ Chiueh, T.² Shin, K.G.³

9
- 84855793418
- Malware classification based on call graph clustering
- J. Kinable and O. Kostakis, "Malware classification based on call graph clustering," CoRR, vol. abs/1008.4365, 2010.
- (2010) CoRR , vol.1008 , Issue.4365
- Kinable, J.¹ Kostakis, O.²

10
- 84855795320
- A malware instruction set for behavior-based analysis
- ser. LNI, F. C. Freiling, Ed.
- P. Trinius, C. Willems, T. Holz, and K. Rieck, "A malware instruction set for behavior-based analysis," in Sicherheit, ser. LNI, F. C. Freiling, Ed., vol. 170. GI, 2010, pp. 205-216.
- (2010) Sicherheit , vol.170 , Issue.GI , pp. 205-216
- Trinius, P.¹ Willems, C.² Holz, T.³ Rieck, K.⁴

11
- 79958743806
- Automatic analysis of malware behavior using machine learning
- K. Rieck, P. Trinius, C. Willems, and T. Holz, "Automatic analysis of malware behavior using machine learning," Journal of Computer Security, vol. 19, no. 3, 2011.
- (2011) Journal of Computer Security , vol.19 , Issue.3
- Rieck, K.¹ Trinius, P.² Willems, C.³ Holz, T.⁴

12
- 78249253017
- On challenges in evaluating malware clustering
- ser. Lecture Notes in Computer Science, S. Jha, R. Sommer, and C. Kreibich, Eds. Springer
- P. Li, L. Liu, D. Gao, and M. K. Reiter, "On challenges in evaluating malware clustering," in RAID, ser. Lecture Notes in Computer Science, S. Jha, R. Sommer, and C. Kreibich, Eds., vol. 6307. Springer, 2010, pp. 238-255.
- (2010) RAID , vol.6307 , pp. 238-255
- Li, P.¹ Liu, L.² Gao, D.³ Reiter, M.K.⁴

13
- 84924223669
- Static analysis of executables to detect malicious patterns
- USENIX Association. USENIX Association, Aug.
- M. Christodorescu and S. Jha, "Static analysis of executables to detect malicious patterns," in Proceedings of the 12th USENIX Security Symposium (Security'03), USENIX Association. USENIX Association, Aug. 2003, pp. 169-186.
- (2003) Proceedings of the 12th USENIX Security Symposium (Security'03) , pp. 169-186
- Christodorescu, M.¹ Jha, S.²

14
- 84875656430
- Exploiting similarity between variants to defeat malware
- A. Walenstein, M. Venable, M. Hayes, C. Thompson, and A. Lakhotia, "Exploiting similarity between variants to defeat malware," in Proceedings of BlackHat 2007 DC Briefings, 2007.
- (2007) Proceedings of BlackHat 2007 DC Briefings
- Walenstein, A.¹ Venable, M.² Hayes, M.³ Thompson, C.⁴ Lakhotia, A.⁵

15
- 33646414637
- Addison-Wesley Professional
- P. Szor, The Art of Computer Virus Research and Defense. Addison-Wesley Professional, 2005.
- (2005) The Art of Computer Virus Research and Defense
- Szor, P.¹

16
- 84855801128
- [Online]
- V. Alvarez, "The yara project." [Online]. Available: http://code.google.com/p/yara-project
- Alvarez, V.¹

17
- 84855775639
- January. [Online]
- -, "Rule-driven malware identification and classification," January 2008. [Online]. Available: http://www.virusbtn.com/virusbulletin/ archive/2008/01/vb200801-rule-driven-classification
- (2008) Rule-driven Malware Identification and Classification
- Alvarez, V.¹

18
- 84855816346
- [Online]
- J. D. Kornblum, "Fuzzy hashing and ssdeep." [Online]. Available: http://ssdeep.sourceforge.net
- Fuzzy Hashing and Ssdeep
- Kornblum, J.D.¹

19
- 73449135786
- Automatic static unpacking of malware binaries
- Washington, DC, USA: IEEE Computer Society. [Online]
- K. Coogan, S. Debray, T. Kaochar, and G. Townsend, "Automatic static unpacking of malware binaries," in Proceedings of the 2009 16th Working Conference on Reverse Engineering, ser. WCRE '09. Washington, DC, USA: IEEE Computer Society, 2009, pp. 167-176. [Online]. Available: http://dx.doi.org/10. 1109/WCRE.2009.24
- (2009) Proceedings of the 2009 16th Working Conference on Reverse Engineering, Ser. WCRE '09 , pp. 167-176
- Coogan, K.¹ Debray, S.² Kaochar, T.³ Townsend, G.⁴

20
- 84855793421
- Exploiting similarity between variants to defeat malware
- July 2007
- D. Quist, "Exploiting similarity between variants to defeat malware," in Proceedings of BlackHat USA 2007, July 2007.
- (2007) Proceedings of BlackHat USA
- Quist, D.¹

21
- 70349161342
- Diploma Thesis, University of Mannheim, January
- L. Böhne, "Pandora's bochs: Automatic unpacking of malware," Diploma Thesis, University of Mannheim, January 2008.
- (2008) Pandora's Bochs: Automatic Unpacking of Malware
- Böhne, L.¹

* 이 정보는 Elsevier사의 SCOPUS DB에서 KISTI가 분석하여 추출한 것입니다.