Obfuscation-based malware update: A comparison of manual and automated methods

C. Barría; D. Cordero; C. Cubillos; M. Palma; D. Cabrera

doi:10.15837/ijccc.2017.4.2961

Obfuscation-based malware update: A comparison of manual and automated methods

C. Barría, D. Cordero, C. Cubillos, M. Palma, D. Cabrera

SCHOOL OF COMPUTER ENGINEERING

Research output: Contribution to journal › Article › peer-review

2 Scopus citations

Abstract

This research presents a proposal of malware classification and its update based on capacity and obfuscation. This article is an extension of [4]^a, and describes the procedure for malware updating, that is, to take obsolete malware that is already detectable by antiviruses, update it through obfuscation techniques and thus making it undetectable again. As the updating of malware is generally performed manually, an automatic solution is presented together with a comparison from the standpoint of cost and processing time. The automated method proved to be more reliable, fast and less intensive in the use of resources, specially in terms of antivirus analysis and malware functionality checking times.

Original language	English
Pages (from-to)	461-474
Number of pages	14
Journal	International Journal of Computers, Communications and Control
Volume	12
Issue number	4
DOIs	https://doi.org/10.15837/ijccc.2017.4.2961
State	Published - 2017

Keywords

Cyberspace, antivirus
Malware
Obfuscation techniques
Security

Access to Document

10.15837/ijccc.2017.4.2961

Cite this

@article{9804328402904cafb48eb2c1c220cee4,

title = "Obfuscation-based malware update: A comparison of manual and automated methods",

abstract = "This research presents a proposal of malware classification and its update based on capacity and obfuscation. This article is an extension of [4]a, and describes the procedure for malware updating, that is, to take obsolete malware that is already detectable by antiviruses, update it through obfuscation techniques and thus making it undetectable again. As the updating of malware is generally performed manually, an automatic solution is presented together with a comparison from the standpoint of cost and processing time. The automated method proved to be more reliable, fast and less intensive in the use of resources, specially in terms of antivirus analysis and malware functionality checking times.",

keywords = "Cyberspace, antivirus, Malware, Obfuscation techniques, Security",

author = "C. Barr{\'i}a and D. Cordero and C. Cubillos and M. Palma and D. Cabrera",

note = "Publisher Copyright: {\textcopyright} 2006-2017 by CCC Publications.",

year = "2017",

doi = "10.15837/ijccc.2017.4.2961",

language = "English",

volume = "12",

pages = "461--474",

journal = "International Journal of Computers, Communications and Control",

issn = "1841-9836",

publisher = "CCC Publications, R & D Agora",

number = "4",

}

TY - JOUR

T1 - Obfuscation-based malware update

T2 - A comparison of manual and automated methods

AU - Barría, C.

AU - Cordero, D.

AU - Cubillos, C.

AU - Palma, M.

AU - Cabrera, D.

PY - 2017

Y1 - 2017

N2 - This research presents a proposal of malware classification and its update based on capacity and obfuscation. This article is an extension of [4]a, and describes the procedure for malware updating, that is, to take obsolete malware that is already detectable by antiviruses, update it through obfuscation techniques and thus making it undetectable again. As the updating of malware is generally performed manually, an automatic solution is presented together with a comparison from the standpoint of cost and processing time. The automated method proved to be more reliable, fast and less intensive in the use of resources, specially in terms of antivirus analysis and malware functionality checking times.

AB - This research presents a proposal of malware classification and its update based on capacity and obfuscation. This article is an extension of [4]a, and describes the procedure for malware updating, that is, to take obsolete malware that is already detectable by antiviruses, update it through obfuscation techniques and thus making it undetectable again. As the updating of malware is generally performed manually, an automatic solution is presented together with a comparison from the standpoint of cost and processing time. The automated method proved to be more reliable, fast and less intensive in the use of resources, specially in terms of antivirus analysis and malware functionality checking times.

KW - Cyberspace, antivirus

KW - Malware

KW - Obfuscation techniques

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=85021322545&partnerID=8YFLogxK

U2 - 10.15837/ijccc.2017.4.2961

DO - 10.15837/ijccc.2017.4.2961

M3 - Article

AN - SCOPUS:85021322545

SN - 1841-9836

VL - 12

SP - 461

EP - 474

JO - International Journal of Computers, Communications and Control

JF - International Journal of Computers, Communications and Control

IS - 4

ER -

Obfuscation-based malware update: A comparison of manual and automated methods

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this