Advanced Transcriptase for Java']JavaScript Malware

被引:0
|
作者
Di Troia, Fabio [1 ]
Visaggio, Corrado Aaron [2 ]
Austin, Thomas H. [1 ]
Stamp, Mark [1 ]
机构
[1] San Jose State Univ, Dept Comp Sci, San Jose, CA 95192 USA
[2] Univ Sannio, Dept Engn, Benevento, Italy
来源
2016 11TH INTERNATIONAL CONFERENCE ON MALICIOUS AND UNWANTED SOFTWARE (MALWARE) | 2016年
关键词
METAMORPHIC DETECTION;
D O I
暂无
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
Previous work has shown that JavaScript malware can manipulate its internal code with relative ease using an approach known as Transcriptase. However, the resulting malware remained susceptible to software similarity based scoring techniques. In this research, we develop and analyze an advanced version of Transcriptase that is entirely practical and is not detectable using any of several scoring techniques considered. Our technique, which is based on entropy manipulations and multiple layers of encryption, is applicable generally for use in malware obfuscation.
引用
收藏
页码:121 / 128
页数:8
相关论文
共 50 条
  • [1] Hunting for metamorphic Java']JavaScript malware
    Musale, Mangesh
    Austin, Thomas H.
    Stamp, Mark
    [J]. JOURNAL IN COMPUTER VIROLOGY AND HACKING TECHNIQUES, 2015, 11 (02): : 89 - 102
  • [2] Is eval () Evil : A study of Java']JavaScript in PDF malware
    Lemay, Antoine
    Leblanc, Sylvain P.
    [J]. PROCEEDINGS OF THE 2018 13TH INTERNATIONAL CONFERENCE ON MALICIOUS AND UNWANTED SOFTWARE (MALWARE 2018), 2018, : 13 - 22
  • [3] Protecting the intranet against "Java']JavaScript malware" and related attacks
    Johns, Martin
    Winter, Justus
    [J]. DETECTION OF INTRUSIONS AND MALWARE, AND VULNERABILITY ASSESSMENT, PROCEEDINGS, 2007, 4579 : 40 - +
  • [4] Bivariate Classification of Malware in Java']JavaScript using Dynamic Analysis
    Gupta, Yash
    Bansal, Divya
    Sofat, Sanjeev
    [J]. PROCEEDINGS OF THE 1ST INTERNATIONAL WORKSHOP ON CLOUD COMPUTING AND INFORMATION SECURITY (CCIS 2013), 2013, 52 : 178 - 182
  • [5] Multiple Classifier Systems for More Accurate Java']JavaScript Malware Detection
    Yi, Zibo
    Ma, Jun
    Luo, Lei
    Yu, Jie
    Wu, Qingbo
    [J]. PROCEEDINGS OF THE INTERNATIONAL CONFERENCE ON PROMOTION OF INFORMATION TECHNOLOGY (ICPIT 2016), 2016, 66 : 139 - 143
  • [6] Novel Java']JavaScript malware detection based on fuzzy Petri nets
    Lin, Yi-Nan
    Wang, Sheng-Kuan
    Yang, Cheng-Ying
    Shen, Victor R. L.
    Juang, Tony Tong-Ying
    Wei, Chin -Shan
    [J]. JOURNAL OF INTELLIGENT & FUZZY SYSTEMS, 2020, 39 (01) : 249 - 261
  • [7] Wobfuscator: Obfuscating Java']JavaScript Malware via Opportunistic Translation to WebAssembly
    Romano, Alan
    Lehmann, Daniel
    Pradel, Michael
    Wang, Weihang
    [J]. 43RD IEEE SYMPOSIUM ON SECURITY AND PRIVACY (SP 2022), 2022, : 1574 - 1589
  • [8] A Systematic Literature Review and Quality Analysis of Java']Javascript Malware Detection
    Sohan, Md. Fahimuzzman
    Basalamah, Anas
    [J]. IEEE ACCESS, 2020, 8 : 190539 - 190552
  • [9] On Java']JavaScript Malware and related threats Web page based attacks revisited
    Johns, Martin
    [J]. JOURNAL OF COMPUTER VIROLOGY AND HACKING TECHNIQUES, 2008, 4 (03): : 161 - 178
  • [10] JS']JSLess: A Tale of a Fileless Java']Javascript Memory-Resident Malware
    Saad, Sherif
    Mahmood, Farhan
    Briguglio, William
    Elmiligi, Haytham
    [J]. INFORMATION SECURITY PRACTICE AND EXPERIENCE, ISPEC 2019, 2019, 11879 : 113 - 131
12345