Title :
Platform Independent Malware Analysis Framework
Author :
Losche, Ulf ; Morgenstern, Maik ; Pilz, Hendrik
Author_Institution :
AV-TEST GmbH, Magdeburg, Germany
Abstract :
Over the past years malicious software has evolved to a persistent threat on all major computer platforms. Due tothe high number of new threats which are released every day security researchers have developed automatic systems toanalyze and classify unknown pieces of software. While these techniques are technically mature on the Windows platformthey still have to be improved on many other platforms such as Linux and Mac OS X. As the process of malware analysis isvery similar on all platforms we have developed a platform independent framework to easily implement malware analysison a new platform. This paper will cover our experience with malware analysis and we will show our generic approach,which can be applied on any platform.
Keywords :
Android (operating system); invasive software; Linux; Mac OS X; Windows platform; automatic systems; computer platforms; generic approach; malicious software; platform independent malware analysis framework; unknown software analysis; unknown software classification; Androids; Humanoid robots; Linux; Malware; Monitoring; Operating systems; Virtual machine monitors; Android; Dynamic analysis; Forensic; Linux; Mac OS X; Malware analysis; Platform independent; Sandbox; Virtualization; Windows;
Conference_Titel :
IT Security Incident Management & IT Forensics (IMF), 2015 Ninth International Conference on
Conference_Location :
Magdeburg
Print_ISBN :
978-1-4799-9902-6
DOI :
10.1109/IMF.2015.21
