Home Science Portable Dynamic Malware Analysis with an Improved Scalability and Automatisation

Portable Dynamic Malware Analysis with an Improved Scalability and Automatisation

0
0
405

A malware is deployed ubiquitously to steal safety or liability-critical information and damage the compromised systems. In this paper, the authors present a portable, scalable and transparent system for dynamic analysis of malware targeting Windows OS. The portability feature is enabled by introducing a driver capable of collecting the behavioural activities of analysed samples in low kernel level and detection of a new malware in the latest version of Windows OS is guaranteed without waiting for its signature update. A large volume and variety of malicious behaviour is monitored and analysed by the presented virtual, scalable and automated system deployment. End-to-end design is presented and functional tests of portability feature are conducted by compiling the developed kernel driver component in the analysis machine. Evaluation is performed by using recently captured malware samples that are automatically analysed and detected on a Windows 8 Ultimate 64-bit and Windows 10 OS.

CORES_2017_paper_26.1

 

Load More Related Articles
Load More In Science

Leave a Reply

Your email address will not be published. Required fields are marked *