AN OPTIMAL AND TRANSPARENT FRAMEWORK FOR AUTOMATIC ANALYSIS OF MALWARE

Q: How can I download an article?

To download an article from SID, first log in to the site, search for the article title, and click on the 'Download Article' option.

Q: How can I download an ISI article?

To download an ISI article on SID, enter the keyword or article title in the search bar, view the relevant results, click on the desired article, and select the 'Download Article' option.

Q: How can I access the SID database?

To access the SID database, visit SID.ir, create an account, and log in to access scientific resources.

Q: Is downloading articles from SID free?

Some articles on SID are available for free, while others require payment. Details are specified on the article's page.

PARSA SAEED; GOORAN OORIMI A.

مرکز اطلاعات علمی Scientific Information Database (SID) - Trusted Source for Research and Academic Resources

Journal Paper

Paper Information

Journal: Advanced Defense Science and Technology Year:2016 | Volume:7 | Issue:1 Page(s): 71-80

Download Full-Text

Persian Verion

View:

1,031

Download:

Cites:

Information Journal Paper

Title

AN OPTIMAL AND TRANSPARENT FRAMEWORK FOR AUTOMATIC ANALYSIS OF MALWARE

Author(s)

PARSA SAEED | GOORAN OORIMI A. | Issue Writer Certificate

Keywords

ANALYSIS ENVIRONMENTQ2

HARDWARE-ASSISTED VIRTUALIZATIONQ2

TRANSPARENCYQ2

DYNAMIC ANALYSISQ2

MALWAREQ2

Abstract

Malware is the most important security threat in cyberspace. Some statistics show that over 315, 000 MALWARE are released, every day. Certainly, it is not possible to analyze all of these MALWARE, manually. That's why the security vendors are obliged to use software capable of analyzing suspicious executable files. These software determine behavior of suspicious files automatically. Several tools such as Anubis and Cuckoo are produced in this area. The problem of these tools is lack of TRANSPARENCY. Some MALWARE use this sort of weaknesses to recon ANALYSIS ENVIRONMENTs. To resolve this problem some solutions using HARDWARE-ASSISTED VIRTUALIZATION is presented.However, these solutions impose a great run time overhead on the program execution. In this paper an automated MALWARE analysis framework is presented that is both transparent and optimal. This framework in addition to being resistant to MALWARE with split personality features, may also be used to analyze the large amount of MALWARE released every day without adding extra hardware resources. This framework uses DYNAMIC ANALYSIS approaches with hardware assisted virtualization technology to analyze suspicious code. The DYNAMIC ANALYSIS approaches used in this framework include sandboxing and system calls sequence analysis. Analysis based on hardwareassisted virtualization technology is applied to provide transparent ANALYSIS ENVIRONMENT.

Cites

No record.

References

No record.

Cite

APA: Copy

PARSA, SAEED, & GOORAN OORIMI, A.. (2016). AN OPTIMAL AND TRANSPARENT FRAMEWORK FOR AUTOMATIC ANALYSIS OF MALWARE. (JOURNAL OF ADVANCED DEFENCE SCIENCE AND TECHNOLOGY) JOURNAL OF PASSIVE DEFENCE SCIENCE AND TECHNOLOGY, 7(1), 71-80. SID. https://sid.ir/paper/167412/en

Vancouver: Copy

PARSA SAEED, GOORAN OORIMI A.. AN OPTIMAL AND TRANSPARENT FRAMEWORK FOR AUTOMATIC ANALYSIS OF MALWARE. (JOURNAL OF ADVANCED DEFENCE SCIENCE AND TECHNOLOGY) JOURNAL OF PASSIVE DEFENCE SCIENCE AND TECHNOLOGY[Internet]. 2016;7(1):71-80. Available from: https://sid.ir/paper/167412/en

IEEE: Copy

SAEED PARSA, and A. GOORAN OORIMI, “AN OPTIMAL AND TRANSPARENT FRAMEWORK FOR AUTOMATIC ANALYSIS OF MALWARE,” (JOURNAL OF ADVANCED DEFENCE SCIENCE AND TECHNOLOGY) JOURNAL OF PASSIVE DEFENCE SCIENCE AND TECHNOLOGY, vol. 7, no. 1, pp. 71–80, 2016, [Online]. Available: https://sid.ir/paper/167412/en

Related Journal Papers