HOME ARTICLES REVIEWS IT TOOLS NEWS RELEASES ADVERTISING
You are here: IT-Observer » News RSS | White Papers |   

Malware Behavioral Classification

Sunday, 14 May 2006 22:18 EST



In recent years, the number of malware families/variants has exploded dramatically. Automatic malware classification is becoming an important research area. Virus/spyware writers continue to create large number of new families and variants at an increasingly fast rate, effectively rendering manual human analysis inefficient and inadequate.

In attempts to automate static file analysis, we encountered considerable challenges from incremental family evolutions, binary obfuscation and intricate component relationships associated with Spyware. These challenges suggest the importance of run time behavior analysis in addition to static binary analysis, and using adaptable algorithms to automate classification. In this paper, we propose a behavior-based automated classification method based on distance measure and machine learning.

Read Full Story

Prevent data theft & viruses through network connected USB sticks, PDAs & media players. Control user access to endpoint connections with GFI EndPointSecurity - Free trial!

Visit GFI Security Software page for more information.

 

FREE IP PBX: 3CX VOIP Phone System for Windows. No timeouts or limitations

 

Latest News

Valentine’s Day: a powerful lure for spreading malware
09.02.07  As Valentine´s Day approaches, users should keep a wary eye on any romantic messages received by email, as many of them could contain malicious code.

Skype reads out your BIOS data
09.02.07  The Windows version of the Voice-over-IP software Skype reads and stores the BIOS and motherboard serial number of a user’s computer.

Utimaco SafeGuard Enterprise supports BitLocker
09.02.07  Utimaco has announced that its SafeGuard Enterprise now supports Windows Vista BitLocker drive encryption.

RSA 2007: Yoggie awarded Most Innovative Company
08.02.07  Yoggie Security Systems has announced that it has been named the Most Innovative Company at the RSA security conference 2007 for the development of Yoggie Gatekeeper Pro security appliance.

Microsoft launches new SSL VPN solution
02.02.07  Microsoft has announced the availability of Intelligent Application Gateway 2007, the company’s new security access solution that combines virtual private networking technology acquired from Whale Communication and Web application firewall.

MIMEDefang 2.59 for UNIX released
02.02.07  Roaring Penguin Software has announced the availability of MIMEDefang 2,59, the latest version of the company’s framework for filtering emails.

Ping of death comes to Solaris
31.01.07  Sun Microsystems has issued a security update intended for computers running Sun Solaris 10 operating system.
Copyright © IT-Observer Online Publication 2000 - 2007 Top | RSS Feeds | About Us   
Site Meter