Reverse code engineering: An in-depth analysis of the Bagle virus

被引:3
|
作者
Rozinov, K [1 ]
机构
[1] Polytech Univ, Dept Comp & Informat Sci, Brooklyn, NY 11201 USA
来源
Proceedings from the Sixth Annual IEEE Systems, Man and Cybernetics Information Assurance Workshop | 2005年
关键词
reverse code engineering; reverse engineering; RCE; bagle; beagle; virus; worm; functional flow; FFSig;
D O I
10.1109/IAW.2005.1495977
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
This paper is the result of work done in the field of reverse code engineering and how it could be applied to better detecting viruses and worms. The goal of this paper is to try to answer the following two questions: How do you reverse engineer a virus and can reverse engineering a virus lead to better ways of detecting, preventing, and recovering from a virus and its future variants? In addition, the paper describes the Bagle virus, the resources and environment used for analysis, the approach and techniques used to completely reverse engineer the Bagle virus, and some of the analysis problems encountered and their solutions. It also presents some best practices to use while reverse code engineering.
引用
收藏
页码:380 / 387
页数:8
相关论文
共 50 条
  • [1] In-depth analysis
    British Dental Journal, 2005, 199 (6) : 387 - 387
  • [2] In-depth analysis
    Wilks, N
    PROFESSIONAL ENGINEERING, 2000, 13 (06) : 20 - 21
  • [3] On The Performance of Code Block Segmentation for LTE-Advanced: An In-Depth Analysis
    Lenzi, Karlo G.
    Figueiredo, Felipe A. P.
    Filho, Jose A. B.
    Figueiredo, Fabricio L.
    2013 25TH INTERNATIONAL SYMPOSIUM ON COMPUTER ARCHITECTURE AND HIGH PERFORMANCE COMPUTING (SBAC-PAD), 2013, : 200 - 205
  • [4] An In-Depth Analysis of the Code-Reuse Gadgets Introduced by Software Obfuscation
    Zhang, Naiqian
    Feng, Zheyun
    Xu, Dongpeng
    APPLIED CRYPTOGRAPHY AND NETWORK SECURITY, ACNS 2024, PT III, 2024, 14585 : 217 - 240
  • [5] On the Code Reverse Engineering Problem
    Cluzeau, Mathieu
    Tillich, Jean-Pierre
    2008 IEEE INTERNATIONAL SYMPOSIUM ON INFORMATION THEORY PROCEEDINGS, VOLS 1-6, 2008, : 634 - 638
  • [6] An In-Depth Analysis of Original Antigenic Sin in Dengue Virus Infection
    Midgley, Claire M.
    Bajwa-Joseph, Martha
    Vasanawathana, Sirijitt
    Limpitikul, Wannee
    Wills, Bridget
    Flanagan, Aleksandra
    Waiyaiya, Emily
    Tran, Hai Bac
    Cowper, Alison E.
    Chotiyarnwon, Pojchong
    Grimes, Jonathan M.
    Yoksan, Sutee
    Malasit, Prida
    Simmons, Cameron P.
    Mongkolsapaya, Juthathip
    Screaton, Gavin R.
    JOURNAL OF VIROLOGY, 2011, 85 (01) : 410 - 421
  • [7] ERYA-Profiling: A code for quantitative PIGE analysis of in-depth heterogeneous samples
    Manteigas, V
    Cruz, J.
    Fonseca, M.
    Jesus, A. P.
    NUCLEAR INSTRUMENTS & METHODS IN PHYSICS RESEARCH SECTION B-BEAM INTERACTIONS WITH MATERIALS AND ATOMS, 2021, 502 (502): : 142 - 149
  • [8] The In-Depth Analysis of Addiction
    Bedir, Emel
    ADDICTA-THE TURKISH JOURNAL ON ADDICTIONS, 2016, 3 (03): : 476 - 479
  • [9] Reverse Engineering of Microprocessor Program Code
    Kwiecien, Andrzej
    Mackowski, Michal
    Skoroniak, Krzysztof
    COMPUTER NETWORKS, 2012, 291 : 191 - 197
  • [10] Reverse engineering of object oriented code
    Tonella, P
    ICSE 05: 27th International Conference on Software Engineering, Proceedings, 2005, : 724 - 725
12345