DocumentCode :
2718296
Title :
Research and Implementation of OEP Search Based on API-monitoring
Author :
Yang, Han ; Liu, Dan ; Zhao, Zhongshu ; Li, Yichao
Author_Institution :
Res. Inst. of Electron. Sci. & Technol., Univ. of Electron. Sci. & Technol. of China, Chengdu, China
fYear :
2012
fDate :
11-13 Aug. 2012
Firstpage :
863
Lastpage :
866
Abstract :
OEP (Original Entry Point) search is the first and foremost step in unpacking. At present, it lacks generic and automated OEP search method for numerous types of packers. This paper discusses general methods of OEP search and proposes an OEP search method based on API-monitoring. Then the paper presents a generic OEP search strategy based on the combination of existing methods. Empirical test shows that the new method is able to deal with most common packers and has good generality and accuracy.
Keywords :
application program interfaces; computerised monitoring; invasive software; storage allocation; API-monitoring; generic OEP search strategy; original entry point search method; unpacking; Context; Educational institutions; Electronic mail; Monitoring; Search problems; Software; OEP; pack; unpack;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Computer Science & Service System (CSSS), 2012 International Conference on
Conference_Location :
Nanjing
Print_ISBN :
978-1-4673-0721-5
Type :
conf
DOI :
10.1109/CSSS.2012.220
Filename :
6394458
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2718296
بازگشت