Zabidi, M. N. A. and Maarof, Mohd. Aizaini and Zainal, Anazida (2012) Malware analysis with multiple features. In: Proceedings - 2012 14th International Conference on Modelling and Simulation, UKSim 2012. IEEE, New York, USA, pp. 231-235. ISBN 978-076954682-7
Full text not available from this repository.
Official URL: http://dx.doi.org/10.1109/UKSim.2012.40
Abstract
Malware analysis process is being categorized into static analysis and dynamic analysis. Both static and dynamic analysis have their own strengths and weaknesses. In this paper, we present a tool written in Python programming language called as pingaji, which could assist the work of malware analyst to get the static features of malware. pingaji contains several modules - Application Programming Interface (API) calls extractor, binary entropy information, anti virtual machine and anti debugger detector and XOR encrypted strings decrypt or. pingaji was developed in order to assist our work in getting malware features. pingaji is focusing on ripping Microsoft Windows executable binaries' malicious features.
| Item Type: | Book Section |
|---|---|
| Additional Information: | Indexed by Scopus |
| Uncontrolled Keywords: | feature selection, malware, static analysis |
| Subjects: | Q Science > QA Mathematics > QA75 Electronic computers. Computer science |
| Divisions: | Computer Science and Information System |
| ID Code: | 35711 |
| Deposited By: | Fazli Masari |
| Deposited On: | 29 Oct 2013 01:12 |
| Last Modified: | 04 Feb 2017 06:44 |
Repository Staff Only: item control page
