Conference paper Open Access

Malware vs Anti-Malware Battle - Gotta Evade 'em All!

Chaffey, E.; Sgandurra, D.


JSON-LD (schema.org) Export

{
  "inLanguage": {
    "alternateName": "eng", 
    "@type": "Language", 
    "name": "English"
  }, 
  "description": "<p>The landscape of malware development is ever-changing, creating a constant catch-up contest between the defenders and the adversaries. One of the methodologies that has the potential to pose a significant threat to systems is malware evasion. This is where malware tries to determine whether it is run in a controlled environment, such as a sandbox. Similarly, a malware can also learn how an Anti-Malware System (AMS) decides whether an input program is a malware or in fact benign with the goal of bypassing it. On the other hand, the AMS tries to detect whether a malware sample is performing such evasive checks, e.g. by evaluating the results of Reverse-Turing Test (RTT). This learning process can be viewed as a &lsquo;battle&rsquo; between the AMS and the malware, due to the malware attempting to defeat the AMS, where a successful win for the malware would be to evade detection by the AMS and, conversely, a win for the AMS would be to correctly detect the malware and its evasive actions. We propose a visualisation-based system, called Gotta Evade &lsquo;em All, that allows cyber-security analysts to clearly see the evasive and anti-evasive actions performed by the malware and the AMS during the battle.</p>", 
  "license": "https://creativecommons.org/licenses/by/4.0/legalcode", 
  "creator": [
    {
      "affiliation": "University of London", 
      "@type": "Person", 
      "name": "Chaffey, E."
    }, 
    {
      "affiliation": "University of London", 
      "@type": "Person", 
      "name": "Sgandurra, D."
    }
  ], 
  "headline": "Malware vs Anti-Malware Battle - Gotta Evade 'em All!", 
  "image": "https://zenodo.org/static/img/logos/zenodo-gradient-round.svg", 
  "datePublished": "2020-08-29", 
  "url": "https://zenodo.org/record/4277105", 
  "@type": "ScholarlyArticle", 
  "@context": "https://schema.org/", 
  "identifier": "https://doi.org/10.5281/zenodo.4277105", 
  "@id": "https://doi.org/10.5281/zenodo.4277105", 
  "workFeatured": {
    "@type": "Event", 
    "name": "IEEE Symposium on Visualization for Cyber Security"
  }, 
  "name": "Malware vs Anti-Malware Battle - Gotta Evade 'em All!"
}
70
100
views
downloads
All versions This version
Views 7070
Downloads 100100
Data volume 1.1 GB1.1 GB
Unique views 6868
Unique downloads 9696

Share

Cite as