Challenging Anti-virus Through Evolutionary Malware Obfuscation

Challenging Anti-virus Through Evolutionary Malware Obfuscation

The use of anti-virus software has become something of an act of faith. A recent study showed that more than 80 % of all personal computers have anti-virus software installed. However, the protection mechanisms in place are far less effective than users would expect. Malware analysis is a classical...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Gaudesi, Marco, Marcelli, Andrea, Sanchez, Ernesto, Squillero, Giovanni, Tonda, Alberto
Format: Tagungsbericht
Sprache:eng
Schlagworte:
Computational-intelligence
Evolutionary algorithms
Life Sciences
Malware
Packer
Security
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The use of anti-virus software has become something of an act of faith. A recent study showed that more than 80 % of all personal computers have anti-virus software installed. However, the protection mechanisms in place are far less effective than users would expect. Malware analysis is a classical example of cat-and-mouse game: as new anti-virus techniques are developed, malware authors respond with new ones to thwart analysis. Every day, anti-virus companies analyze thousands of malware that has been collected through honeypots, hence they restrict the research to only already existing viruses. This article describes a novel method for malware obfuscation based an evolutionary opcode generator and a special ad-hoc packer. The results can be used by the security industry to test the ability of their system to react to malware mutations.
ISSN:0302-9743
1611-3349
DOI:10.1007/978-3-319-31153-1_11