• DocumentCode
    2585128
  • Title

    A Malware Sample Capturing and Tracking System

  • Author

    Jiang, Xiao ; Hao, Zhiyu ; Wang, Yanming

  • Author_Institution
    Inst. of Comput. Technol., Chinese Acad. of Sci., Beijing, China
  • Volume
    1
  • fYear
    2010
  • fDate
    19-20 Dec. 2010
  • Firstpage
    69
  • Lastpage
    72
  • Abstract
    In this paper, we present an effective approach to capture malware samples and track them by simulating and monitoring their network behavior. Furthermore, we design and implement a Malware Sample Capturing and Tracking System (MSCTS), which consists of unknown malware acquisition, automatic analysis, network behavior simulation and information statistics. Experimental results show that MSCTS can effectively capture malware samples, analyze and track them with a better precision. We also discuss some key methods of bot behavior analysis and botnet tracking with MSCTS.
  • Keywords
    security of data; automatic analysis; behavior analysis; botnet tracking system; malware sample capturing; network behavior simulation; unknown malware acquisition; Crawlers; Databases; Internet; Malware; Protocols; Servers; MSCTS; Network Security; botnet; malware;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Software Engineering (WCSE), 2010 Second World Congress on
  • Conference_Location
    Wuhan
  • Print_ISBN
    978-1-4244-9287-9
  • Type

    conf

  • DOI
    10.1109/WCSE.2010.48
  • Filename
    5718264
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2585128