VirusBattle: State-of-the-art malware analysis for better cyber threat intelligence

Miles, Craig; Lakhotia, Arun; LeDoux, Charles; Newsom, Aaron; Notani, Vivek

doi:10.1109/isrcs.2014.6900103

Cited by 20 publications

(13 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Evaluating the top results shown in Tables 2 and 3, we can see that ontologies and related semantics-based methods are among the more highly scored solutions [7,11,102,113,120].…”

Section: Formalization and Ontology Buildingmentioning

confidence: 99%

“…Attacks against the hypervisor itself [115] and cross-VM attacks [9,125] Execution path analysis explores or defines code paths that are dynamically investigated during execution. Miles et al [102] focus on the interrelationship among malware instances to discover new connections between actors, machines, and malware: Code, semantically similar procedures of code, and API call execution/event log traces are compared to identify similarities. This includes websites, e-mail messages and PE file headers.…”

Section: Malware Analysis Solutionsmentioning

confidence: 99%

See 1 more Smart Citation

Semantics-aware detection of targeted attacks: a survey

Luh

Marschalek

Kaiser

et al. 2016

J Comput Virol Hack Tech

View full text Add to dashboard Cite

In today's interconnected digital world, targeted attacks have become a serious threat to conventional computer systems and critical infrastructure alike. Many researchers contribute to the fight against network intrusions or malicious software by proposing novel detection systems or analysis methods. However, few of these solutions have a particular focus on Advanced Persistent Threats or similarly sophisticated multi-stage attacks. This turns finding domainappropriate methodologies or developing new approaches into a major research challenge. To overcome these obstacles, we present a structured review of semantics-aware works that have a high potential for contributing to the analysis or detection of targeted attacks. We introduce a detailed literature evaluation schema in addition to a highly granular model for article categorization. Out of 123 identified papers, 60 were found to be relevant in the context of this study. The selected articles are comprehensively reviewed and assessed in accordance to Kitchenham's guidelines for systematic literature reviews. In conclusion, we combine new insights and the status quo of current research into the concept of an ideal systemic approach capable of semantically processing and evaluating information from different observation points.

show abstract

“…Evaluating the top results shown in Tables 2 and 3, we can see that ontologies and related semantics-based methods are among the more highly scored solutions [7,11,102,113,120].…”

Section: Formalization and Ontology Buildingmentioning

confidence: 99%

Section: Malware Analysis Solutionsmentioning

confidence: 99%

Semantics-aware detection of targeted attacks: a survey

Luh

Marschalek

Kaiser

et al. 2016

J Comput Virol Hack Tech

View full text Add to dashboard Cite

show abstract

“…This may be attained by encouraging the revelation from claiming concealed inter-relationships the middle of cyber-artifacts, for example, components starting with organized organize logs, proxy Furthermore IDS systems, VPN, anti-virus, DLP, DNS queries. In addition, more provision logs are from relevant data such as like email, print logs, office get logs and inside talk logs, which are mankind's assets information [20], [21]. Malware analysis process has been presents by As shown in Figure 1 that presents the overall process flow of the malware analysis performed on malware sample.…”

Section: Malware In Cyber Threat Intelligencementioning

confidence: 99%

“…To instance, programmed association finding in digital artifacts pulled from a corporate system under constant strike enabled security examiners should fast find at influenced machines. Furthermore to identify those foundation utilized by their attackers [20], [23], [24].…”

Section: Malware In Cyber Threat Intelligencementioning

confidence: 99%

See 1 more Smart Citation

Invesitigation of Malware and Forensic Tools on Internet

Kumar¹,

Sharma²,

Dhaundiyal³

et al. 2018

IJECE

View full text Add to dashboard Cite

<p>Malware is an application that is harmful to your forensic information. Basically, malware analyses is the process of analysing the behaviours of malicious code and then create signatures to detect and defend against it.Malware, such as Trojan horse, Worms and Spyware severely threatens the forensic security. This research observed that although malware and its variants may vary a lot from content signatures, they share some behaviour features at a higher level which are more precise in revealing the real intent of malware. This paper investigates the various techniques of malware behaviour extraction and analysis. In addition, we discuss the implications of malware analysis tools for malware detection based on various techniques.</p>

show abstract

What is Cyber Threat Intelligence and How is it Evolving?

Tounsi¹

2019

Cyber‐Vigilance and Digital Trust

View full text Add to dashboard Cite

VirusBattle: State-of-the-art malware analysis for better cyber threat intelligence

Cited by 20 publications

References 7 publications

Semantics-aware detection of targeted attacks: a survey

Semantics-aware detection of targeted attacks: a survey

Invesitigation of Malware and Forensic Tools on Internet

What is Cyber Threat Intelligence and How is it Evolving?

Contact Info

Product

Resources

About