Efficient Virus Detection Using Dynamic Instruction Sequences

نویسندگان

  • Jianyong Dai
  • Ratan K. Guha
  • Joohan Lee
چکیده

In this paper, we present a novel approach to detect unknown virus using dynamic instruction sequences mining techniques. We collect runtime instruction sequences from unknown executables and organize instruction sequences into basic blocks. We extract instruction sequence patterns based on three types of instruction associations within derived basic blocks. Following a data mining process, we perform feature extraction, feature selection and then build a classification model to learn instruction association patterns from both benign and malicious dataset automatically. By applying this classification model, we can predict the nature of an unknown program. Our result shows that our approach is accurate, reliable and efficient.

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

A scalable multi-level feature extraction technique to detect malicious executables

We present a scalable and multi-level feature extraction technique to detect malicious executables. We propose a novel combination of three different kinds of features at different levels of abstraction. These are binary n-grams, assembly instruction sequences, and Dynamic Link Library (DLL) function calls; extracted from binary executables, disassembled executables, and executable headers, res...

متن کامل

Serological and genomic detection of bovine leukemia virus in human and cattle samples

Bovine leukemia virus (BLV) is a retrovirus responsible for lymphoproliferative disorders in cattle. Although infections of BLV in animals are well known, little is known about its capacity to infect humans. This study investigated the presence of anti-BLV antibodies and BLV proviruses in human and cattle samples. An indirect enzyme-linked immunosorbent assay (ELISA) was used to detect anti-BL...

متن کامل

Serological and genomic detection of bovine leukemia virus in human and cattle samples

Bovine leukemia virus (BLV) is a retrovirus responsible for lymphoproliferative disorders in cattle. Although infections of BLV in animals are well known, little is known about its capacity to infect humans. This study investigated the presence of anti-BLV antibodies and BLV proviruses in human and cattle samples. An indirect enzyme-linked immunosorbent assay (ELISA) was used to detect anti-BL...

متن کامل

Using Boehmite Nanoparticles as an Undercoat, and Riboflavin as a Redox Probe for Immunosensor Designing: Ultrasensitive Detection of Hepatitis C Virus Core Antigen

In this study a label-free electrochemical Immunosensor for ultrasensitive detection of Hepatitis C virus core antigen in serum samples was fabricated by using a simple approach. In this method a low-cost and sensitive immunosensor was fabricated based on a boehmite nanoparticles (BNPs) modified glassy carbon. The BNPs provide a specific platform with increased surface area which is capable of ...

متن کامل

Hunting Obfuscated Malware by Abstract Interpretation

The Problem. A malware is a program with a malicious behaviour, that is designed to replicate with no user consent and to damage software and/or data on infected machines. Malware are generally classified according to their goals and propagation methods into viruses, worms, backdoors, Trojans, etc. A malware detector is a system that attempts to verify whether a program presents a malicious beh...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

عنوان ژورنال:
  • JCP

دوره 4  شماره 

صفحات  -

تاریخ انتشار 2009