A Survey on Automated Dynamic Malware-Analysis Techniques and Tools

A Survey on Automated Dynamic Malware-Analysis Techniques and Tools

Anti-virus vendors are confronted with a multitude of potentially malicious samples today. Receiving thousands of new samples every day is not uncommon. The signatures that detect confirmed malicious threats are mainly still created manually, so it is important to discriminate between samples that p...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:ACM computing surveys 2012-02, Vol.44 (2), p.1-42
Hauptverfasser: EGELE, Manuel, SCHOLTE, Theodoor, KIRDA, Engin, KRUEGEL, Christopher
Format: Artikel
Sprache:eng
Schlagworte:
Anti-virus software
Applied sciences
Automated
Automation
Computation
Computer science
control theory
systems
Computer systems performance. Reliability
Computer viruses
Digital signatures
Dynamics
Exact sciences and technology
Malware
Memory and file management (including protection and security)
Memory organisation. Data processing
Receiving
Signatures
Software
Studies
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Anti-virus vendors are confronted with a multitude of potentially malicious samples today. Receiving thousands of new samples every day is not uncommon. The signatures that detect confirmed malicious threats are mainly still created manually, so it is important to discriminate between samples that pose a new unknown threat and those that are mere variants of known malware. This survey article provides an overview of techniques based on dynamic analysis that are used to analyze potentially malicious samples. It also covers analysis programs that leverage these It also covers analysis programs that employ these techniques to assist human analysts in assessing, in a timely and appropriate manner, whether a given sample deserves closer manual inspection due to its unknown malicious behavior.
ISSN:0360-0300
1557-7341
DOI:10.1145/2089125.2089126