FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W2005491441> ?p ?o ?g. }

• W2005491441 abstract "Malware landscape has been dramatically elevated over the last decade. The main reason of the increase is that new malware variants can be produced easily using simple code obfuscation techniques. Once the obfuscation is applied, the malware can change their syntactics while preserving semantics, and bypass anti-virus (AV) scanners. Malware authors, thus, commonly use the code obfuscation techniques to generate metamorphic malware. Nevertheless, signature based AV techniques are limited to detect the metamorphic malware since they are commonly based on the syntactic signature matching. In this paper, we propose BinGraph, a new mechanism that accurately discovers metamorphic malware. BinGraph leverages the semantics of malware, since the mutant malware is able to manipulate their syntax only. To this end, we first extract API calls from malware and convert to a hierarchical behavior graph that represents with identical 128 nodes based on the semantics. Later, we extract unique subgraphs from the hierarchical behavior graphs as semantic signatures representing common behaviors of a specific malware family. To evaluate BinGraph, we analyzed a total of 827 malware samples that consist of 10 malware families with 1,202 benign binaries. Among the malware, 20% samples randomly chosen from each malware family were used for extracting semantic signatures, and rest of them were used for assessing detection accuracy. Finally, only 32 subgraphs were selected as the semantic signatures. BinGraph discovered malware variants with 98% of detection accuracy." @default.
• W2005491441 created "2016-06-24" @default.
• W2005491441 creator A5034083735 @default.
• W2005491441 creator A5055794339 @default.
• W2005491441 date "2012-10-01" @default.
• W2005491441 modified "2023-09-27" @default.
• W2005491441 title "BinGraph: Discovering mutant malware using hierarchical semantic signatures" @default.
• W2005491441 cites W1581009051 @default.
• W2005491441 cites W1582350176 @default.
• W2005491441 cites W1879558173 @default.
• W2005491441 cites W1916732574 @default.
• W2005491441 cites W1989255635 @default.
• W2005491441 cites W1994344180 @default.
• W2005491441 cites W2011009207 @default.
• W2005491441 cites W2099194862 @default.
• W2005491441 cites W2111038628 @default.
• W2005491441 cites W2114065168 @default.
• W2005491441 cites W2117030266 @default.
• W2005491441 cites W2131523719 @default.
• W2005491441 cites W2132874238 @default.
• W2005491441 cites W2138471478 @default.
• W2005491441 cites W2143807210 @default.
• W2005491441 cites W2167671111 @default.
• W2005491441 doi "https://doi.org/10.1109/malware.2012.6461015" @default.
• W2005491441 hasPublicationYear "2012" @default.
• W2005491441 type Work @default.
• W2005491441 sameAs 2005491441 @default.
• W2005491441 citedByCount "12" @default.
• W2005491441 countsByYear W20054914412013 @default.
• W2005491441 countsByYear W20054914412015 @default.
• W2005491441 countsByYear W20054914412016 @default.
• W2005491441 countsByYear W20054914412017 @default.
• W2005491441 countsByYear W20054914412018 @default.
• W2005491441 countsByYear W20054914412020 @default.
• W2005491441 countsByYear W20054914412022 @default.
• W2005491441 countsByYear W20054914412023 @default.
• W2005491441 crossrefType "proceedings-article" @default.
• W2005491441 hasAuthorship W2005491441A5034083735 @default.
• W2005491441 hasAuthorship W2005491441A5055794339 @default.
• W2005491441 hasConcept C154945302 @default.
• W2005491441 hasConcept C184337299 @default.
• W2005491441 hasConcept C199360897 @default.
• W2005491441 hasConcept C204321447 @default.
• W2005491441 hasConcept C2524010 @default.
• W2005491441 hasConcept C2779696439 @default.
• W2005491441 hasConcept C33923547 @default.
• W2005491441 hasConcept C38652104 @default.
• W2005491441 hasConcept C40305131 @default.
• W2005491441 hasConcept C41008148 @default.
• W2005491441 hasConcept C541664917 @default.
• W2005491441 hasConcept C84525096 @default.
• W2005491441 hasConceptScore W2005491441C154945302 @default.
• W2005491441 hasConceptScore W2005491441C184337299 @default.
• W2005491441 hasConceptScore W2005491441C199360897 @default.
• W2005491441 hasConceptScore W2005491441C204321447 @default.
• W2005491441 hasConceptScore W2005491441C2524010 @default.
• W2005491441 hasConceptScore W2005491441C2779696439 @default.
• W2005491441 hasConceptScore W2005491441C33923547 @default.
• W2005491441 hasConceptScore W2005491441C38652104 @default.
• W2005491441 hasConceptScore W2005491441C40305131 @default.
• W2005491441 hasConceptScore W2005491441C41008148 @default.
• W2005491441 hasConceptScore W2005491441C541664917 @default.
• W2005491441 hasConceptScore W2005491441C84525096 @default.
• W2005491441 hasLocation W20054914411 @default.
• W2005491441 hasOpenAccess W2005491441 @default.
• W2005491441 hasPrimaryLocation W20054914411 @default.
• W2005491441 hasRelatedWork W1482228399 @default.
• W2005491441 hasRelatedWork W2171111262 @default.
• W2005491441 hasRelatedWork W2361166482 @default.
• W2005491441 hasRelatedWork W2393529801 @default.
• W2005491441 hasRelatedWork W3183826413 @default.
• W2005491441 hasRelatedWork W3215569626 @default.
• W2005491441 hasRelatedWork W4226362425 @default.
• W2005491441 hasRelatedWork W4308064900 @default.
• W2005491441 hasRelatedWork W1994747466 @default.
• W2005491441 hasRelatedWork W2521201595 @default.
• W2005491441 isParatext "false" @default.
• W2005491441 isRetracted "false" @default.
• W2005491441 magId "2005491441" @default.
• W2005491441 workType "article" @default.