Call for Papers : Volume 15, Issue 03, March 2024, Open Access; Impact Factor; Peer Reviewed Journal; Fast Publication

Natural   Natural   Natural   Natural   Natural  

Impeding malware detection and analysis for binary execution in cipherxray

×

Error message

  • Deprecated function: Function create_function() is deprecated in include() (line 1 of /home4/vibu/public_html/journalajst.com/sites/all/modules/views/theme/views-view.tpl.php).
  • Deprecated function: Function create_function() is deprecated in include_once() (line 2 of /home4/vibu/public_html/journalajst.com/sites/all/themes/bootstrap/templates/system/textfield.func.php).
  • Deprecated function: Function create_function() is deprecated in include_once() (line 3 of /home4/vibu/public_html/journalajst.com/sites/all/themes/bootstrap/templates/system/textfield.func.php).
  • Deprecated function: Function create_function() is deprecated in include_once() (line 1 of /home4/vibu/public_html/journalajst.com/sites/all/themes/bootstrap/templates/system/form-element-label.func.php).
  • Deprecated function: Function create_function() is deprecated in include_once() (line 1 of /home4/vibu/public_html/journalajst.com/sites/all/themes/bootstrap/templates/system/container.func.php).
  • Deprecated function: Function create_function() is deprecated in include() (line 1 of /home4/vibu/public_html/journalajst.com/sites/all/modules/views/theme/views-view.tpl.php).
  • Deprecated function: Function create_function() is deprecated in include() (line 1 of /home4/vibu/public_html/journalajst.com/sites/all/modules/views/theme/views-view.tpl.php).
  • Deprecated function: implode(): Passing glue string after array is deprecated. Swap the parameters in drupal_get_feeds() (line 394 of /home4/vibu/public_html/journalajst.com/includes/common.inc).
  • Deprecated function: Function create_function() is deprecated in include_once() (line 1 of /home4/vibu/public_html/journalajst.com/sites/all/themes/bootstrap/templates/system/link.vars.php).
  • Deprecated function: Function create_function() is deprecated in include_once() (line 1 of /home4/vibu/public_html/journalajst.com/sites/all/themes/bootstrap/templates/system/breadcrumb.vars.php).
  • Deprecated function: Function create_function() is deprecated in include_once() (line 1 of /home4/vibu/public_html/journalajst.com/sites/all/themes/bootstrap/templates/system/status-messages.func.php).

Malwares have become progressively lurking, a lot of malwares are victimisation cryptographical algorithms (e.g., packing, encrypting C&C communication) to shield themselves from being analyzed. The utilization of cryptographical algorithms and really transient cryptographical secrets within the malware binary imposes a key obstacle to effective malware analysis and defense. To modify more practical malware analysis, forensics, and reverse engineering, we have got developed CipherXRay - a completely unique binary analysis framework that may mechanically determine and recover the cryptographical operations and transient secrets from the execution of doubtless obfuscated binary executables based on the avalanche impact of cryptographical functions, CipherXRay is ready to accurately pinpoint the boundary of cryptographical operation and recover really transient cryptographical secrets that solely exist in memory for one instant in between multiple nested cryptographical operations. CipherXRay will more determine bound operation modes (e.g., ECB, CBC, CFB) of the known block cipher and tell whether or not the known block cipher operation is encoding or secret writing in bound cases.

Author: 
Aruna, K. Jayalakshmi, G. Sathyavathy, S. Rekhaswathi, G. and Sudhani, B.
Download PDF: 
Journal Area: 
None