会议专题

AMCAS: An Automatic Malicious Code Analysis System

查看全文→
With the development of malicious code technology, the number of malicious code has continued to increase. So it is imperative to optimize the traditional manual analysis method by automatic malicious code analysis system. This paper presents AMCAS--an automatic malicious code analysis system. It includes malicious code static analyzer, dynamic analyzer and network behavior analyzer. Compared with some existing automatic analysis systems, this system integrates the advantages of static and dynamic analysis, and imports network behavior analysis. Static analyzer can get the unpacked binary code and CallGraph; dynamic analyzer can get the host behavior of malicious code and network behavior analyzer can get the malicious network behavior profile. Experiment shows that this system can get malicious code information efficiently.

Jia Zhang Yuntao Guan Xiaoxin Jiang Haixin Duan Jianping Wu

Dept.of Computer Science and Technology Tsinghua University Beijing,P.R.China 100084

国际会议

The Ninth International Conference on Web-Age Information Management(第九届web时代信息管理国际会议)(WAIM 2008)

张家界

英文

2008-07-20(万方平台首次上网日期,不代表论文的发表时间)