Detection of mirai by syntactic and behavioral analysis
NB Said, F Biondi, V Bontchev… - 2018 IEEE 29th …, 2018 - ieeexplore.ieee.org
2018 IEEE 29th International Symposium on Software Reliability …, 2018•ieeexplore.ieee.org
The largest botnet distributed denial of service attacks in history have been executed by
devices controlled by the Mirai botnet trojan. To prevent Mirai from spreading, this paper
presents and evaluates techniques to classify binary samples as Mirai based on their
syntactic and behavioral properties. Syntactic malware detection is shown to have a good
detection rate and no false positives, but to be very easy to circumvent. Behavioral malware
detection is resistant to simple obfuscation and has better detection rate than syntactic …
devices controlled by the Mirai botnet trojan. To prevent Mirai from spreading, this paper
presents and evaluates techniques to classify binary samples as Mirai based on their
syntactic and behavioral properties. Syntactic malware detection is shown to have a good
detection rate and no false positives, but to be very easy to circumvent. Behavioral malware
detection is resistant to simple obfuscation and has better detection rate than syntactic …
The largest botnet distributed denial of service attacks in history have been executed by devices controlled by the Mirai botnet trojan. To prevent Mirai from spreading, this paper presents and evaluates techniques to classify binary samples as Mirai based on their syntactic and behavioral properties. Syntactic malware detection is shown to have a good detection rate and no false positives, but to be very easy to circumvent. Behavioral malware detection is resistant to simple obfuscation and has better detection rate than syntactic detection, while keeping false positives to zero. This paper demonstrates these results, and concludes by showing how to combine syntactic and behavioral analysis techniques for the detection of Mirai.
ieeexplore.ieee.org
Showing the best result for this search. See all results