Title :
A Static Method for Detection of Information Theft Malware
Author :
Li, JiaJing ; Mao, Jian ; Wei, Tao ; Zou, Wei
Author_Institution :
Key Lab. of Network & Software Security Assurance, Peking Univ., Beijing, China
Abstract :
Existing techniques based on behavior semantics for information theft malware detection have the main shortcomings of low path coverage and disability of finding hidden malicious behaviors. In this paper we propose a static method for the detection of information theft malware to overcome these shortcomings. It is particularly efficient for inter-procedure taint analysis, and it is suitable for complicated malware detection, such as Trojan and Bot. Its static style makes it able to find hidden malicious behaviors. We also present an implementation of our method that works on x86 executables and a set of experimental studies validate its good efficiency and effectiveness.
Keywords :
invasive software; program diagnostics; Bot; Trojan; behavior semantics; hidden malicious behavior; information theft; interprocedure taint analysis; malware detection; static method; Computer science; Computer science education; Computer security; Educational technology; Electronic commerce; Games; Information analysis; Information security; Internet; Laboratories; information theft; malware detection; pushdown system; taint analysis;
Conference_Titel :
Electronic Commerce and Security, 2009. ISECS '09. Second International Symposium on
Conference_Location :
Nanchang
Print_ISBN :
978-0-7695-3643-9
DOI :
10.1109/ISECS.2009.148
