• DocumentCode
    3059228
  • Title

    A Static Method for Detection of Information Theft Malware

  • Author

    Li, JiaJing ; Mao, Jian ; Wei, Tao ; Zou, Wei

  • Author_Institution
    Key Lab. of Network & Software Security Assurance, Peking Univ., Beijing, China
  • Volume
    1
  • fYear
    2009
  • fDate
    22-24 May 2009
  • Firstpage
    236
  • Lastpage
    240
  • Abstract
    Existing techniques based on behavior semantics for information theft malware detection have the main shortcomings of low path coverage and disability of finding hidden malicious behaviors. In this paper we propose a static method for the detection of information theft malware to overcome these shortcomings. It is particularly efficient for inter-procedure taint analysis, and it is suitable for complicated malware detection, such as Trojan and Bot. Its static style makes it able to find hidden malicious behaviors. We also present an implementation of our method that works on x86 executables and a set of experimental studies validate its good efficiency and effectiveness.
  • Keywords
    invasive software; program diagnostics; Bot; Trojan; behavior semantics; hidden malicious behavior; information theft; interprocedure taint analysis; malware detection; static method; Computer science; Computer science education; Computer security; Educational technology; Electronic commerce; Games; Information analysis; Information security; Internet; Laboratories; information theft; malware detection; pushdown system; taint analysis;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Electronic Commerce and Security, 2009. ISECS '09. Second International Symposium on
  • Conference_Location
    Nanchang
  • Print_ISBN
    978-0-7695-3643-9
  • Type

    conf

  • DOI
    10.1109/ISECS.2009.148
  • Filename
    5209890
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3059228