Earticle

초록

영어

Computer viruses and other forms of malware have viewed as a threat to any software system. They have the capability to deliver a malicious infection. A common technique that virus writers use to avoid detection is to enable the virus to change itself by having some kind of self-modifying code. This kind of virus is commonly known as a metamorphic virus, and can be particularly difficult to detect. Metamorphic viruses have a potential to avoid any signature-based detection schemes by implementing code obfuscation techniques in an effort to defeat it. In metamorphic virus, if dead code is added and the control flow is changed sufficiently by inserting jump statements, the virus cannot be detected. In this paper we first developed a code obfuscation engine. We then used this engine to create metamorphic variants of a seed virus and performed the validity of the statement about metamorphic viruses and signature based detectors. Last but not least, we have propose a profile which enclose the information about the existing metamorphic viruses infection.

목차

Abstract
 1. Introduction
 2. Proposed Detection Approach and Experiment Setup
  2.1 Signature Based as Virus Detection Tool
  2.2 Signature Based as Virus Detection Tool
 3. Results and Discussion
 4. Conclusion
 Acknowledgements
 References

키워드

저자

• Imran Edzereiq Kamarudin [ Faculty of Computer System and Software Engineering Universiti Malaysia Pahang Lebuh Raya Tun Razak, Gambang 26300, Kuantan, Pahang, Malaysia ]
• Syahrizal Azmir Md Sharif [ Faculty of Computer System and Software Engineering Universiti Malaysia Pahang Lebuh Raya Tun Razak, Gambang 26300, Kuantan, Pahang, Malaysia ]
• Tutut Herawan [ Department of Mathematics Education Universitas Ahmad Dahlan Jalan Prof Dr Soepomo 55166, Yogyakarta, Indonesia ]

참고문헌

발행기관

간행물

표지보기 관심저널 등록

• 간행물명

  International Journal of Security and Its Applications

• 간기

  격월간

• pISSN

  1738-9976

• 수록기간

  2008~2016

• 등재여부

  SCOPUS

• 십진분류

  KDC 505 DDC 605