Proposed classification of malware, based on obfuscation

“…The process of detecting malware through the recognition of their signatures, that these are later saved into the antivirus databases. However, through an updating process, these malware could be transformed and become undetectable without losing its functionality as it is described by Barría et al [4].…”

“…Malware is a malicious program that provides access to a system without user's authorization and executes undesirable actions. The terms malware and virus are usually used as the same concept, although they are, in fact, different [4] [19]. Initially, the use of malware was strictly associated with the investigation and protection of software developers for intellectual property (using cryptography), but throughout time its objective changed, and therefore, its importance.…”

“…As the malware updating process is generally performed manually, an automatic solution is to be introduced so to compare both in terms of time and costs. This research, an extended version of a previous work [4], provides a proposal of malware classification based on obfuscation. The novelty of the present work relies on; first, providing a summary of the obfuscation-based malware classification tackled in the previous work [4]; second, formalizing the malware update process and making an empirical demonstration on how a malware, that is detectable by antiviruses, could be reused by updating it and making it undetectable through obfuscation; third, comparing the manual and the automated methods for malware updating though an example.…”

Obfuscation-based Malware Update: A comparison of Manual and Automated Methods

“…The process of detecting malware through the recognition of their signatures, that these are later saved into the antivirus databases. However, through an updating process, these malware could be transformed and become undetectable without losing its functionality as it is described by Barría et al [4].…”

“…Malware is a malicious program that provides access to a system without user's authorization and executes undesirable actions. The terms malware and virus are usually used as the same concept, although they are, in fact, different [4] [19]. Initially, the use of malware was strictly associated with the investigation and protection of software developers for intellectual property (using cryptography), but throughout time its objective changed, and therefore, its importance.…”

“…As the malware updating process is generally performed manually, an automatic solution is to be introduced so to compare both in terms of time and costs. This research, an extended version of a previous work [4], provides a proposal of malware classification based on obfuscation. The novelty of the present work relies on; first, providing a summary of the obfuscation-based malware classification tackled in the previous work [4]; second, formalizing the malware update process and making an empirical demonstration on how a malware, that is detectable by antiviruses, could be reused by updating it and making it undetectable through obfuscation; third, comparing the manual and the automated methods for malware updating though an example.…”

Obfuscation-based Malware Update: A comparison of Manual and Automated Methods

“…One of the obfuscation methods is adding the dead code that alters the look of the program code. e implementation of this method is easy, but the disadvantage of this approach is that it is recognized by eliminating additional commands [2][3][4][5].…”

“…Displacement and handling of the subroutine is one obfuscation method: its advantage is that it obfuscates the source of the program code and downs the order of the subroutine. e disadvantage of this method is that the code is detected by changing the subroutine [1,2].…”

Hybrid Obfuscation Using Signals and Encryption

Proposal of a Multi-standard Model for Measuring Maturity Business Levels with Reference to Information Security Standards and Controls