Visualization techniques for efficient malware detection

descriptionPublicationkeyboard_double_arrow_right Article , Conference object 01 Jun 2013Publisher:IEEEJournal:2013 IEEE International Conference on Intelligence and Security Informatics

Authors: John Donahue; Anand Paturi; Srinivas Mukkamala;

doi: 10.1109/isi.2013.6578845

Visualization techniques for efficient malware detection

- Summary
- Metrics

Abstract

Traditional tools for reverse engineering of binary and PE files are limited to heavy text base output, thus requiring skilled analysts to use them. In this paper, we present techniques that will visualize PE files, which will help analysts with basic skills to quickly understand their underlying structure. We also present Markov Byte Plot-based techniques to identify packed malware and discuss how our techniques can aid cybersecurity community for better enumeration of malicious software.

Impact byBIP!

	selected citations These citations are derived from selected sources. This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).	11
	popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.	Top 10%
	influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).	Top 10%
	impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.	Average