PPT-Part 4: Malware Functionality

Chapter 11 Malware Behavior Chapter 12 Covert Malware Launching Chapter 13 Data Encoding Chapter 14 Malwarefocused Network Signatures Chapter 11 Malware Behavior Common functionality Downloaders. Author : . Yajin. Zhou, . Xuxuan. Jiang. TJ. Index of this paper. Introduction. Malware Timeline. Malware Characterization. Malware Installation. Repackaging. Update Attack. Drive-by Download. Others. . Software . 1. Part IV: Software. Part 4 . . Software . Sophisticated Criminals or . Babytown. Frolics?. Ryan Merritt. Josh Grunzweig. Who We Are. Josh Grunzweig. Security Researcher. Malware Reverser. Dabbles in Ruby. Homebrewer. Ryan Merritt. Security Researcher. Newbies. A guide for those of you who want to break into the fun world of malware.. What We’re Going To Cover. Basic x86/64 ASM. Tools of the trade. Setting up an environment. Intro to the Debugger . Connor Schnaith, Taiyo Sogawa. 9 April 2012. Motivation. “. 5. 000 . new. malware samples per day”. --David Perry of Trend Micro. Large variance between attacks. Polymorphic attacks . Perform the same function. Analysis. Part 4. Veronica Kovah. vkovah.ost. at . gmail. See notes for citation. 1. http://. opensecuritytraining.info. /. MalwareDynamicAnalysis.html. All . materials is licensed under . a Creative . CS 598: Network Security. Michael Rogers & Leena Winterrowd. March 26, 2013. Types of Malware. Image courtesy of prensa.pandasecurity.com. Types of Malware. Viruses 16,82%. Trojan horses. 69.99%. Nicole Fern. K.-T. Tim Cheng. UC Santa Barbara. 1. Main Contributions. Information leakage Trojan only modifying . unspecified functionality. Mutation testing based detection method. Discovered vulnerabilities and verification holes in UART design with sophisticated . CS 598: Network Security. Michael Rogers & Leena Winterrowd. March 26, 2013. Types of Malware. Image courtesy of prensa.pandasecurity.com. Types of Malware. Viruses 16,82%. Trojan horses. 69.99%. towards functionality. Ruizhen. Hu. 1. . . Oliver van Kaick. 2. Youyi. Zheng. 3. . . Manolis. Savva. 4. 2. . Carleton University. 1 . Shenzhen University. 3. . ShanghaiTech. Jeremy . Blackthorne. , Benjamin Kaiser, . Benjamin Fuller. , and Bulent . Yener. Contribution. Malware changes behavior by observing environment to avoid analysis. Complementary technique to obfuscation. Erdal Ozkaya . Raymond Comvalius. CISO . Infrastructure Architect. Emt. Holding . NEXTXPERT. Module Agenda. First response at a malware attack. Recognizing. malware. Identifying. Chien-Chung Shen. cshen. @udel.edu. Malware. NIST . defines malware as:. “. a program that is inserted into a system, . usually covertly. , . with the . intent of compromising the confidentiality, integrity, . Software that is specifically designed to disturb, damage, or gain unauthorized access to a computer system.. These software are generally made for :. Stealing, encrypting, or deleting data. Altering or hijacking computing functions.