Similarity-based Polymorphic Shellcode Detection

Similarity-based Polymorphic Shellcode Detection

In the work the method for polymorphic shellcode dedection based on the set of known shellcodes is proposed. The method’s main idea is in sequential applying of deobfuscating transformations to a data analyzed and then recognizing similarity with malware samples. The method has been tested on the se...

Full description

Bibliographic Details
Main Authors:	Denis Yurievich Gamayunov, Anastasia Alekseevna Skovoroda (Shcherbinina)
Format:	Article
Language:	English
Published:	Moscow Engineering Physics Institute 2013-02-01
Series:	Bezopasnostʹ Informacionnyh Tehnologij
Subjects:	polymorphic shellcode obfuscated shellcode
Online Access:	https://bit.mephi.ru/index.php/bit/article/view/352

Similar Items

Generating Antivirus Evasive Executables Using Code Mutation
by: Stefan Sabin NICULA
Published: (2018-01-01)

<monospace>o-glasses</monospace>: Visualizing X86 Code From Binary Using a 1D-CNN
by: Yuhei Otsubo, et al.
Published: (2020-01-01)

Context-Aware Malicious Code Detection
by: Gu, Boxuan
Published: (2012)

Detection of Obfuscated Javascript Code Based on Abstract Syntax Trees Coloring
by: G. S. Ponomarenko, et al.
Published: (2020-06-01)

Detecting and Modeling Polymorphic Shellcode
by: Nbou, Omar
Published: (2010)

A Polymorphic Shellcode Detection Mechanism in the Network
by: Hsiang-lun Huang, et al.
Published: (2007)

Layered obfuscation: a taxonomy of software obfuscation techniques for layered security
by: Hui Xu, et al.
Published: (2020-04-01)

Using Exception Handling to Build Opaque Predicates in Intermediate Code Obfuscation Techniques
by: Daniel Dolz, et al.
Published: (2008-07-01)

Common Program Similarity Metric Method for Anti-Obfuscation
by: Xiaochuan Zhang, et al.
Published: (2018-01-01)

Measuring Software Obfuscation Quality–A Systematic Literature Review
by: Shouki A. Ebad, et al.
Published: (2021-01-01)

LifeLine for FPGA Protection: Obfuscated Cryptography for Real-World Security
by: Florian Stolz, et al.
Published: (2021-08-01)

On the Difficulty of FSM-based Hardware Obfuscation
by: Marc Fyrbiak, et al.
Published: (2018-08-01)

Automatic Deobfuscation of VM-protected Programs
by: Evgenyi Ivanovich Goncharov
Published: (2013-02-01)

Practical, Large-Scale Detection of Obfuscated Malware Code Via Flow Dependency Indexing
by: Jin, Wesley
Published: (2014)

VCF: Virtual Code Folding to Enhance Virtualization Obfuscation
by: Jae Hyuk Suk, et al.
Published: (2020-01-01)

Uncovering highly obfuscated plagiarism cases using fuzzy semantic-based similarity model
by: Salha M. Alzahrani, et al.
Published: (2015-07-01)

Defending Against Microphone-Based Attacks with Personalized Noise
by: Liu Yuchen, et al.
Published: (2021-04-01)

Tis-Bad: A Time Series-Based Deobfuscation Algorithm
by: A Labrador, et al.
Published: (2015-01-01)

Obfuscapk: An open-source black-box obfuscation tool for Android apps
by: Simone Aonzo, et al.
Published: (2020-01-01)

The method of generation program code with indistinguishable functionality
by: Mikhail Andreevich Styugin
Published: (2017-04-01)

On the (in)security of behavioral-based dynamic anti-malware techniques
by: Ersan, Erkan
Published: (2017)

The Research of Detecting Shellcodes through Microsoft Windows API Hooking
by: Kang-Chiao Lin, et al.
Published: (2006)

On the Automatic Analysis of the Practical Resistance of Obfusting Transformations
by: Petr D. Borisov, et al.
Published: (2019-09-01)

Doppelganger Obfuscation — Exploring theDefensive and Offensive Aspects of Hardware Camouflaging
by: Max Hoffmann, et al.
Published: (2020-12-01)

Doppelganger Obfuscation — Exploring theDefensive and Offensive Aspects of Hardware Camouflaging
by: Max Hoffmann, et al.
Published: (2020-12-01)

CONTROL FLOW OBFUSCATION COMPLEXITY
by: KUMAR, AMIT
Published: (2005)

When paths cross: maintaining utility of trajectory data in geomasking
by: Dara E. Seidl
Published: (2017-04-01)

Cryptanalysis on the HHSS Obfuscation Arising From Absence of Safeguards
by: Jung Hee Cheon, et al.
Published: (2018-01-01)

A Novel Immune-Inspired Shellcode Detection Algorithm Based on Hyperellipsoid Detectors
by: Tianliang Lu, et al.
Published: (2018-01-01)

Detection and Elimination of Spyware and Ransomware by Intercepting Kernel-Level System Routines
by: Danial Javaheri, et al.
Published: (2018-01-01)

Analysis of Evasion Techniques in Web-based Malware
by: Lu, Gen
Published: (2013)

TPP: Trajectory Privacy Preservation Against Tensor Voting Based Inference Attacks
by: Xinyue Zhang, et al.
Published: (2018-01-01)

Toolkit for detecting misused epidemiological methods
by: Colin L. Soskolne, et al.
Published: (2021-08-01)

Preserving Consumer Privacy on IEEE 802.11s-Based Smart Grid AMI Networks
by: Beussink, Andrew
Published: (2014)

Protecting the grid topology and user consumption patterns during state estimation in smart grids based on data obfuscation
by: Lakshminarayanan Nandakumar, et al.
Published: (2019-09-01)

Estimation of True Quantiles from Quantitative Data Obfuscated with Additive Noise
by: Ghatak Debolina, et al.
Published: (2018-09-01)

Leveraging WebAssembly for Numerical JavaScript Code Virtualization
by: Shuai Wang, et al.
Published: (2019-01-01)

A White-Box Implementation of IDEA
by: Siyu Pang, et al.
Published: (2021-06-01)

Formally Verified Code Obfuscation in the Coq Proof Assistant
by: Lu, Weiyun
Published: (2019)

A Novel Method for Detecting Future Generations of Targeted and Metamorphic Malware Based on Genetic Algorithm
by: Danial Javaheri, et al.
Published: (2021-01-01)