Analysis and Correlation of Visual Evidence in Campaigns of Malicious Office Documents

Casino, Fran; Totosis, Nikolaos; Apostolopoulos, Theodoros; Lykousas, Nikolaos; Patsakis, Constantinos

doi:10.48550/arxiv.2103.16143

Cited by 2 publications

(3 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The aim of this paper is to look at how similar the behaviours of this particular set of malware (Casino et al, 2021) are, despite the fact that they all have distinct and somewhat unknown roots. This higher-level abstraction of malware functionality is represented by the automated categorization of the behaviours present in a malware illustration.…”

Section: Literature Reviewmentioning

confidence: 99%

Malware Threat Affecting Financial Organization Analysis Using Machine Learning Approach

Rawat

Rimal

William

et al. 2022

International Journal of Information Technology and Web Engineering

View full text Add to dashboard Cite

Since 2014, Emotet has been using Man-in-the-Browsers (MITB) attacks to target companies in the finance industry and their clients. Its key aim is to steal victims' online money-lending records and vital credentials as they go to their banks' websites. Without analyzing network packet payload computing (PPC), IP address labels, port number traces, or protocol knowledge, we have used Machine Learning (ML) modeling to detect Emotet malware infections and recognize Emotet related congestion flows in this work. To classify emotet associated flows and detect emotet infections, the output outcome values are compared by four separate popular ML algorithms: RF (Random Forest), MLP (Multi-Layer Perceptron), SMO (Sequential Minimal Optimization Technique), and the LRM (Logistic Regression Model). The suggested classifier is then improved by determining the right hyperparameter and attribute set range. Using network packet (computation) identifiers, the Random Forest classifier detects emotet-based flows with 99.9726 percent precision and a 92.3 percent true positive rating.

show abstract

Section: Literature Reviewmentioning

confidence: 99%

Malware Threat Affecting Financial Organization Analysis Using Machine Learning Approach

Rawat

Rimal

William

et al. 2022

International Journal of Information Technology and Web Engineering

View full text Add to dashboard Cite

show abstract

“…As the hacker industry becomes more fully professionalized, it is becoming much more adaptive and flexible, making it harder for intelligence and law enforcement to confront. Hacking organizations such as Russia's Strontium (also commonly known as APT28 or Fancy Bear) 9 and China's APT31 (or Zirconium) 10 continue to perform malicious attacks against IoT devices. As with other kinds of illicit industries that have professionalized -drug dealing and human trafficking, for instance -hacking is and will increasingly be dominated by sophisticated actors who understand themselves as 'businessmen', and who regard law enforcement less as a deterrent than as a regulatory force, that is, as a cost of doing business.…”

Section: Implications Of the Hacker Professionalizationmentioning

confidence: 99%

“…Some MaaS sites have become so easy to use customers can use simple Web forms to indicate, for example, which site they wish run a denial-of-service (DoS) attack against, or how many spam emails they wish to send [21]. As security researchers have noted malware authors rent or pass the control of the compromised devices to their peers [9]. Moreover, for many malware families, the attribution of malware to an actor is not straightforward, and due to the malware evolution and code exchange in groups, it becomes a very challenging task.…”

Section: The Evolving Hacker Threat: Hacking-as-a-servicementioning

confidence: 99%

The Professionalization of the Hacker Industry

Brooks¹

2022

IJCSIT

View full text Add to dashboard Cite

Society is inextricably dependent on the Internet and other globally interconnected infrastructures used in the provisioning of information services. The growth of information technology (IT) and information systems (IS) over the past decades has created an unprecedented demand for access to information. The implication of wireless mobility are great, and the commercial possibilities of new and innovative wireless flexibility are just beginning to be realized through the emergence of the Internet of Things (IoT). This article takes a look the history of hacking and professionalization of the hacker industry. As the hacker industry becomes more fully professionalized, it is becoming much more adaptive and flexible, making it harder for intelligence and law enforcement to confront. Furthermore, the hacker industry is blurring the distinction between motivated crime and traditional computer security threats - including the disruption of critical infrastructures or the penetration of networks.

show abstract

Analysis and Correlation of Visual Evidence in Campaigns of Malicious Office Documents

Cited by 2 publications

References 7 publications

Malware Threat Affecting Financial Organization Analysis Using Machine Learning Approach

Malware Threat Affecting Financial Organization Analysis Using Machine Learning Approach

The Professionalization of the Hacker Industry

Contact Info

Product

Resources

About