| | |
| | |
Stat |
Members: 3645 Articles: 2'506'133 Articles rated: 2609
26 April 2024 |
|
| | | |
|
Article overview
| |
|
FEEBO: An Empirical Evaluation Framework for Malware Behavior Obfuscation | Sebastian Banescu
; Tobias Wüchner
; Marius Guggenmos
; Martín Ochoa
; Alexander Pretschner
; | Date: |
11 Feb 2015 | Abstract: | Program obfuscation is increasingly popular among malware creators.
Objectively comparing different malware detection approaches with respect to
their resilience against obfuscation is challenging. To the best of our
knowledge, there is no common empirical framework for evaluating the resilience
of malware detection approaches w.r.t. behavior obfuscation. We propose and
implement such a framework that obfuscates the observable behavior of malware
binaries. To assess the framework’s utility, we use it to obfuscate known
malware binaries and then investigate the impact on detection effectiveness of
different $n$-gram based detection approaches. We find that the obfuscation
transformations employed by our framework significantly affect the precision of
such detection approaches. Several $n$-gram-based approaches can hence be
concluded not to be resilient against this simple kind of obfuscation. | Source: | arXiv, 1502.3245 | Services: | Forum | Review | PDF | Favorites |
|
|
No review found.
Did you like this article?
Note: answers to reviews or questions about the article must be posted in the forum section.
Authors are not allowed to review their own article. They can use the forum section.
browser Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
|
| |
|
|
|
| News, job offers and information for researchers and scientists:
| |