DocumentCode :
2585128
Title :
A Malware Sample Capturing and Tracking System
Author :
Jiang, Xiao ; Hao, Zhiyu ; Wang, Yanming
Author_Institution :
Inst. of Comput. Technol., Chinese Acad. of Sci., Beijing, China
Volume :
1
fYear :
2010
fDate :
19-20 Dec. 2010
Firstpage :
69
Lastpage :
72
Abstract :
In this paper, we present an effective approach to capture malware samples and track them by simulating and monitoring their network behavior. Furthermore, we design and implement a Malware Sample Capturing and Tracking System (MSCTS), which consists of unknown malware acquisition, automatic analysis, network behavior simulation and information statistics. Experimental results show that MSCTS can effectively capture malware samples, analyze and track them with a better precision. We also discuss some key methods of bot behavior analysis and botnet tracking with MSCTS.
Keywords :
security of data; automatic analysis; behavior analysis; botnet tracking system; malware sample capturing; network behavior simulation; unknown malware acquisition; Crawlers; Databases; Internet; Malware; Protocols; Servers; MSCTS; Network Security; botnet; malware;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Software Engineering (WCSE), 2010 Second World Congress on
Conference_Location :
Wuhan
Print_ISBN :
978-1-4244-9287-9
Type :
conf
DOI :
10.1109/WCSE.2010.48
Filename :
5718264
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2585128
بازگشت