Malware Forensics: Discovery of the Intent of Deception

Brand, Murray; Valli, Craig; Woodward, Andrew

doi:10.15394/jdfsl.2010.1082

Cited by 22 publications

(17 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In addition, forensic techniques on various tools and plugins more than avoidance analysis techniques. This has become one of the bases for software investigated [3].…”

Section: Literatur Reviewmentioning

confidence: 99%

Reverse Engineering Analysis Forensic Malware Webc2-Div

Waliulu¹,

Alam²

2018

KOMIK

View full text Add to dashboard Cite

At this paper focus on Malicous Software also known as Malware APT1 (Advance Persistent Threat) codename WEBC2-DIV the most variants malware has criteria consists of Virus, Worm, Trojan, Adware, Spyware, Backdoor either Rootkit. Although, malware could avoidance scanning antivirus but reverse engineering could be know how dangerous malware infect computer client. Lately, malware attack as a form espionage (cyberwar) one of the most topic on security internet, because of has massive impact. Forensic malware becomes indicator successfull user to realized about malware infect. This research about reverse engineering. A few steps there are scanning, suspected packet in network and analysis of malware behavior and dissambler body malware.Keyword : forensic malware, Analysis, Advance Presistent Threat, Cyberwar, dissambler

show abstract

“…In addition, forensic techniques on various tools and plugins more than avoidance analysis techniques. This has become one of the bases for software investigated [3].…”

Section: Literatur Reviewmentioning

confidence: 99%

Reverse Engineering Analysis Forensic Malware Webc2-Div

Waliulu¹,

Alam²

2018

KOMIK

View full text Add to dashboard Cite

show abstract

“…Vendors may often struggle to detect malware and release signature updates, due to malware developers using anti-forensics and anti-avoidance techniques (Brand, Valli & Woodward, 2010). Vendors were also challenged by the 300% surge in newly released malware specimens throughout (ScanSafe, 2009 malware is targeting devices other than the traditional PC paradigm including; Asymmetric Digital Subscriber Line (ADSL) routers, smart phones and gaming consoles (Čeleda, Krejčí, Vykopal, & Drašar, 2010;Symantec, 2009).…”

Section: Security Challengesmentioning

confidence: 99%

An Australian Perspective on the Challenges for Computer and Network Security for Novice Endusers

Szewczyk¹

2012

JDFSL

View full text Add to dashboard Cite

It is common for end-users to have difficulty in using computer or network security appropriately and thus have often been ridiculed when misinterpreting instructions or procedures. This discussion paper details the outcomes of research undertaken over the past six years on why security is overly complex for endusers. The results indicate that multiple issues may render end-users vulnerable to security threats and that there is no single solution to address these problems. Studies on a small group of senior citizens has shown that educational seminars can be beneficial in ensuring that simple security aspects are understood and used appropriately.

show abstract

“…As many debuggers or analyzing tools being developed rapidly, some developers try to avoid debugging through anti-debugging APIs or other techniques [2]. To avoid antidebugging techniques, analysts trick binary files as if they are not in the analyzing environments using plug-ins for debuggers.…”

Section: Introductionmentioning

confidence: 99%

Evading Anti-debugging Techniques with Binary Substitution

Lee¹,

Kang²,

2014

IJSIA

View full text Add to dashboard Cite

Anti-debugging technology refers to various ways of preventing binary files from being analyzed in debuggers or other virtual machine environments. If binary files conceal or modify themself using anti-debugging techniques, analyzing these binary files becomes harder. There are some anti-anti-debugging techniques proposed so far, but malware developers make dynamic analysis difficult using various ways, such as execution time delay, debugger detection techniques and so on. In this paper, we propose a Evading Antidebugging techniques method that can avoid anti-debugging techniques in binary files, and showed several samples of anti-debugging applications and how to detect and patch antidebugging techniques in common utilities or malicious code effectively.

show abstract

Malware Forensics: Discovery of the Intent of Deception

Cited by 22 publications

References 5 publications

Reverse Engineering Analysis Forensic Malware Webc2-Div

Reverse Engineering Analysis Forensic Malware Webc2-Div

An Australian Perspective on the Challenges for Computer and Network Security for Novice Endusers

Evading Anti-debugging Techniques with Binary Substitution

Contact Info

Product

Resources

About