• DocumentCode
    3752517
  • Title

    A New Static Detection Method of Malicious Document Based on Wavelet Package Analysis

  • Author

    Binjie Gu;Yong Fang;Peng Jia;Liang Liu;Lei Zhang;Meilin Wang

  • Author_Institution
    Coll. of Electron. &
  • fYear
    2015
  • Firstpage
    333
  • Lastpage
    336
  • Abstract
    More and more advanced persistent threat attacks has happened since 2009. This kind of attacks usually use more than one zero-day exploit to achieve its goal. Most of the times, the target computer will execute malicious program after the user open an infected compound document. The original detection method becomes inefficient as the attackers using a zero-day exploit to structure these compound documents. Inspired by the detection method based on structural entropy, we apply wavelet analysis to malicious document detection system. In our research, we use wavelet analysis to extract features from the raw data. These features will be used todetect whether the compound document was embed malicious code.
  • Keywords
    "Wavelet transforms","Wavelet analysis","Compounds","Feature extraction","Malware","Portable document format"
  • Publisher
    ieee
  • Conference_Titel
    Intelligent Information Hiding and Multimedia Signal Processing (IIH-MSP), 2015 International Conference on
  • Type

    conf

  • DOI
    10.1109/IIH-MSP.2015.72
  • Filename
    7415824
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3752517