Systematic Approach to Malware Analysis (SAMA)

Higuera, Javier Bermejo; Aramburu, Carlos Abad; Higuera, Juan-Ramón Bermejo; Urbán, Miguel Ángel Sicilia; Sicilia, Juan Antonio

doi:10.3390/app10041360

Cited by 23 publications

(12 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Notwithstanding, obfuscation techniques represent a major impediment to the success of this approach [15]. The "static analysis" incorporates the utilization of reverse engineering methods to analyze the instruction set that characterizes the functioning of the application [16]. In addition, and with a focus on the Android platform, a wide range of features can be discovered through this type of analysis.…”

Section: Xxxxmentioning

confidence: 99%

Benchmarking Android malware analysis tools

Higuera,

Moreno,

Higuera

et al. 2023

Preprint

View full text Add to dashboard Cite

Today, malware is arguably one of the biggest challenges organizations face from a cybersecurity standpoint, regardless of the types of devices used in the organization. One of the most malware-attacked mobile operating systems today is Android. In response to this threat, this paper presents research on the functionalities and performance of different malicious Android application package analysis tools including one that uses machine learning techniques. In addition, it investigates how the use of these tools streamlines the process of detection, classification, and analysis of malicious APKs for Android operating system devices. The tools, that use Artificial Intelligence techniques, are more efficient than other current tools that do not use them. In this way, new approaches can be suggested in the specification, design, and development of new tools that help to analyze, from a cybersecurity point of view, the code of applications developed for this environment.

show abstract

Section: Xxxxmentioning

confidence: 99%

Benchmarking Android malware analysis tools

Higuera,

Moreno,

Higuera

et al. 2023

Preprint

View full text Add to dashboard Cite

show abstract

“…Almost 10 years after MARE was published, a second structured methodology for MA was developed. The newly created methodology was named SAMA [6]. Given the fact that attack vectors have increased immensely during those years it seems that the MARE methodology could be deemed as inadequate for the present needs.…”

Section: Sama (Systematic Approach To Malware Analysis)mentioning

confidence: 99%

“…Behavioral Analysis Figure 1. MARE and SAMA phases comparison [6] The aim of the new procedure is the provision of a framework capable of analyzing modern and complex malware. The demand for such a framework is the need for an iterative process which is systematic, structured, founded upon solid and rigid methods, able to assist the analysts in acquiring the knowledge necessary from a specific malware.…”

Section: Sama (Systematic Approach To Malware Analysis)mentioning

confidence: 99%

See 1 more Smart Citation

Comparative Review of Malware Analysis Methodologies

Kiachidis¹,

Baltatzis²

2021

IJNSA

View full text Add to dashboard Cite

To fight against the evolution of malware and its development, the specific methodologies that are applied by the malware analysts are crucial. Yet, this is something often overlooked in the relevant bibliography or in the formal and informal training of the relevant professionals. There are only two generic and allencompassing structured methodologies for Malware Analysis (MA) – SAMA and MARE. The question is whether they are adequate and there is no need for another one or whether there is no such need at all. This paper will try to answer the above and it will contribute in the following ways: it will present, compare and dissect those two malware analysis methodologies, it will present their capacity for analysing modern malware by applying them on a random modern specimen and finally, it will conclude on whether there is a procedural optimization for malware analysis over the evolution of these two methodologies.

show abstract

“…In studies, showed that static analysis alone is not enough to detect or classify malware. He/She also has claimed to be a necessary complement to static analysis in dynamic analysis of malware in a virtual machine environment, as it is less vulnerable to code cloaking transformation [8].…”

Section: Introductionmentioning

confidence: 99%

Kapımdaki Düşman: Arka Kapı Trojen Saldırıları için Adli Bilişim Analizi Yaklaşımı

Kara¹

2021

European Journal of Science and Technology

View full text Add to dashboard Cite

Developments in internet-based technologies have some risks as well as their convenience. Attackers use the information they obtain by taking advantage of the user vulnerabilities and vulnerabilities in the information system for their interests. Although measures have been taken to prevent the number of victims of crimes committed in a cyber environment in recent years, the adequacy of the measures taken is still controversial. The attackers organize malware attacks especially to obtain users' secret information (social media password, banking information). Backdoor trojan malware is a type of cyber attack that tries to obtain unlimited authorization to obtain all user permissions in the system in which they infiltrate and delivers this information to the attacker. This study focused on the detection and analysis of the backdoor trojan malware. For this purpose real backdoor trojan malware case has been investigated in detail. The analysis results show that the information about the attacker is accessible.

show abstract

Systematic Approach to Malware Analysis (SAMA)

Cited by 23 publications

References 18 publications

Benchmarking Android malware analysis tools

Benchmarking Android malware analysis tools

Comparative Review of Malware Analysis Methodologies

Kapımdaki Düşman: Arka Kapı Trojen Saldırıları için Adli Bilişim Analizi Yaklaşımı

Contact Info

Product

Resources

About