Fighting Evasive Malware with DVasion
| dc.contributor.advisor | Barua, Rajeev | en_US |
| dc.contributor.author | Gilboy, Matthew Ryan | en_US |
| dc.contributor.department | Electrical Engineering | en_US |
| dc.contributor.publisher | Digital Repository at the University of Maryland | en_US |
| dc.contributor.publisher | University of Maryland (College Park, Md.) | en_US |
| dc.date.accessioned | 2016-06-22T06:16:08Z | |
| dc.date.available | 2016-06-22T06:16:08Z | |
| dc.date.issued | 2016 | en_US |
| dc.description.abstract | Malware is a foundational component of cyber crime that enables an attacker to modify the normal operation of a computer or access sensitive, digital information. Despite the extensive research performed to identify such programs, existing schemes fail to detect evasive malware, an increasingly popular class of malware that can alter its behavior at run-time, making it difficult to detect using today’s state of the art malware analysis systems. In this thesis, we present DVasion, a comprehensive strategy that exposes such evasive behavior through a multi-execution technique. DVasion successfully detects behavior that would have been missed by traditional, single-execution approaches, while addressing the limitations of previously proposed multi-execution systems. We demonstrate the accuracy of our system through strong parallels with existing work on evasive malware, as well as uncover the hidden behavior within 167 of 1,000 samples. | en_US |
| dc.identifier | https://doi.org/10.13016/M2HB7D | |
| dc.identifier.uri | http://hdl.handle.net/1903/18396 | |
| dc.language.iso | en | en_US |
| dc.subject.pqcontrolled | Computer engineering | en_US |
| dc.subject.pquncontrolled | dynamic binary instrumentation | en_US |
| dc.subject.pquncontrolled | evasive malware | en_US |
| dc.subject.pquncontrolled | multi-execution | en_US |
| dc.title | Fighting Evasive Malware with DVasion | en_US |
| dc.type | Thesis | en_US |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- Gilboy_umd_0117N_17154.pdf
- Size:
- 831.27 KB
- Format:
- Adobe Portable Document Format