An Approach for Malware Behavior Identification and Classification
Malware is one of the major security threats that can break computer operation. However, commercial antivirus or anti-spyware that used signature-based matching to detects malware cannot solve that kind of threats. Nowadays malware writers try to avoid detection by using several techniques such as polymorphic, metamorphic and also hiding technique. In order to overcome that issue, we proposed a new framework for malware behavior identification and classification that apply dynamic approach. This framework consists of two major processes such as behavior identification and malware classification. These two major processes will integrate together as interrelated process in our proposed framework. Result from this study is a new framework that able to identify and classify malware based on it behaviors.
computer security malware behavior analysis malware classification
Mohamad Fadli Zolkipli Aman Jantan
School of Computer Science Universiti Sains Malaysia, USM Penang, Malaysia
国际会议
上海
英文
191-194
2011-03-11(万方平台首次上网日期,不代表论文的发表时间)