1. Identity statement | |
Reference Type | Conference Paper (Conference Proceedings) |
Site | plutao.sid.inpe.br |
Holder Code | isadg {BR SPINPE} ibi 8JMKD3MGPCW/3DT298S |
Identifier | J8LNKAN8RW/3D53L44 |
Repository | dpi.inpe.br/plutao/2012/11.28.16.40.50 |
Last Update | 2015:03.18.16.07.39 (UTC) administrator |
Metadata Repository | dpi.inpe.br/plutao/2012/11.28.16.40.51 |
Metadata Last Update | 2018:06.05.00.02.05 (UTC) administrator |
Secondary Key | INPE--PRE/ |
ISBN | 9783642311284 03029743 E-ISSN: 16113349 ISBN-13: 9783642311277 |
Label | lattes: 0096913881679975 6 GregioAfFeGeJiSa:2012:PiMaAc |
Citation Key | GregioAfFeGeJiSa:2012:PiMaAc |
Title | Pinpointing Malicious Activities through Network and System-Level Malware Execution Behavior |
Format | Papel |
Year | 2012 |
Access Date | 2024, May 19 |
Secondary Type | PRE CI |
Number of Files | 1 |
Size | 244 KiB |
|
2. Context | |
Author | 1 Gregio, André Ricardo Abed 2 Afonso, Vitor M. 3 Fernandes Filho, Dario S. 4 Geus, Paulo Lício de 5 Jino, Mario 6 Santos, Rafael Duarte Coelho dos |
Resume Identifier | 1 2 3 4 5 6 8JMKD3MGP5W/3C9JJ4N |
Group | 1 2 3 4 5 6 LAC-CTE-INPE-MCTI-GOV-BR |
Affiliation | 1 CTI.MCT 2 Universidade Estadual de Campinas (UNICAMP) 3 Universidade Estadual de Campinas (UNICAMP) 4 Universidade Estadual de Campinas (UNICAMP) 5 Universidade Estadual de Campinas (UNICAMP) 6 Instituto Nacional de Pesquisas Espaciais (INPE) |
Author e-Mail Address | 1 argregrio@cti.gov.br 2 vitor@las.ic.unicamp.br 3 dario@las.ic.unicamp.br 4 paulo@las.ic.unicamp.br 5 jino@ldca.fee.unicamp.br 6 rafael.santos@inpe.br |
e-Mail Address | rafael.santos@inpe.br |
Conference Name | International Conference on Computational Science and Its Applications, 12 (ICCSA). |
Conference Location | Salvador |
Date | 2012 |
Publisher | Springer Verlag |
Publisher City | Heidelberg |
Volume | 7336 |
Pages | 274-285 |
Book Title | Proceedings |
Tertiary Type | Paper |
Organization | Universidade Federal da Bahia (UFBA); Universidade Federal do Reconcavo da Bahia (UFRB); Universidade Estadual de Feira de Santana (UEFS); University of Perugia; University of Basilicata (UB) |
History (UTC) | 2012-11-28 23:06:28 :: lattes -> marciana :: 2012 2013-01-21 12:48:41 :: marciana -> administrator :: 2012 2018-06-05 00:02:05 :: administrator -> marciana :: 2012 |
|
3. Content and structure | |
Is the master or a copy? | is the master |
Content Stage | completed |
Transferable | 1 |
Content Type | External Contribution |
Version Type | finaldraft |
Abstract | Malicious programs pose a major threat to Internet-connected systems, increasing the importance of studying their behavior in order to fight against them. In this paper, we propose definitions to the different types of behavior that a program can present during its execution. Based on those definitions, we define suspicious behavior as the group of actions that change the state of a target system. We also propose a set of network and system-level dangerous activities that can be used to denote the malignity in suspicious behaviors, which were extracted from a large set of malware samples. In addition, we evaluate the malware samples according to their suspicious behavior. Moreover, we developed filters to translate from lower-level execution traces to the observed dangerous activities and evaluated them in the context of actual malware. |
Area | COMP |
Arrangement | urlib.net > BDMCI > Fonds > Produção anterior à 2021 > LABAC > Pinpointing Malicious Activities... |
doc Directory Content | access |
source Directory Content | there are no files |
agreement Directory Content | there are no files |
|
4. Conditions of access and use | |
data URL | http://urlib.net/ibi/J8LNKAN8RW/3D53L44 |
zipped data URL | http://urlib.net/zip/J8LNKAN8RW/3D53L44 |
Language | en |
Target File | gregio_pinpointing.pdf |
User Group | lattes marciana |
Reader Group | administrator marciana |
Visibility | shown |
Read Permission | allow from all |
Update Permission | not transferred |
|
5. Allied materials | |
Next Higher Units | 8JMKD3MGPCW/3ESGTTP |
Citing Item List | sid.inpe.br/mtc-m21/2012/07.13.14.58.32 1 |
Host Collection | dpi.inpe.br/plutao@80/2008/08.19.15.01 |
|
6. Notes | |
Empty Fields | archivingpolicy archivist callnumber copyholder copyright creatorhistory descriptionlevel dissemination doi edition editor issn keywords lineage mark mirrorrepository nextedition notes numberofvolumes orcid parameterlist parentrepositories previousedition previouslowerunit progress project rightsholder schedulinginformation secondarydate secondarymark serieseditor session shorttitle sponsor subject tertiarymark type url |
|
7. Description control | |
e-Mail (login) | marciana |
update | |
|