1. Identity statement | |
Reference Type | Journal Article |
Site | mtc-m16d.sid.inpe.br |
Holder Code | isadg {BR SPINPE} ibi 8JMKD3MGPCW/3DT298S |
Identifier | 8JMKD3MGP7W/3CEPDR8 |
Repository | sid.inpe.br/mtc-m19/2012/08.14.11.34 |
Last Update | 2012:08.29.17.11.29 (UTC) marciana |
Metadata Repository | sid.inpe.br/mtc-m19/2012/08.14.11.34.04 |
Metadata Last Update | 2018:06.05.04.12.40 (UTC) administrator |
Secondary Key | INPE--PRE/ |
DOI | 10.1007/978-3-642-31128-4_20 |
ISSN | 0302-9743 |
Citation Key | GrégioAfFeGeJiSa:2012:PiMaAc |
Title | Pinpointing Malicious Activities through Network and System-Level Malware Execution Behavior |
Year | 2012 |
Access Date | 2024, May 19 |
Secondary Type | PRE PI |
Number of Files | 1 |
Size | 149 KiB |
|
2. Context | |
Author | 1 Grégio, André Ricardo Abed 2 Afonso, Vitor Monte 3 Fernandes Filho, Dario Simões 4 Geus, Paulo Lício de 5 Jino, Mario 6 Santos, Rafael Duarte Coelho dos |
Resume Identifier | 1 2 3 4 5 6 8JMKD3MGP5W/3C9JJ4N |
Group | 1 2 3 4 5 6 LAC-CTE-INPE-MCTI-GOV-BR |
Affiliation | 1 CTI Renato Archer - MCT 2 DCA - FEEC - Unicamp 3 DCA - FEEC - Unicamp 4 DCA - FEEC - Unicamp 5 DCA - FEEC - Unicamp 6 Instituto Nacional de Pesquisas Espaciais (INPE) |
Author e-Mail Address | 1 argregio@cti.gov.br 2 3 4 paulo@las.ic.unicamp.br 5 jino@dca.fee.unicamp.br |
Journal | Lecture Notes in Computer Science |
Volume | 7336 |
Number | PART 4 |
Pages | 274-285 |
Secondary Mark | C_ADMINISTRAÇÃO,_CIÊNCIAS_CONTÁBEIS_E_TURISMO C_ASTRONOMIA_/_FÍSICA C_BIOTECNOLOGIA B5_CIÊNCIAS_BIOLÓGICAS_I C_CIÊNCIAS_BIOLÓGICAS_III B1_CIÊNCIAS_SOCIAIS_APLICADAS_I B3_DIREITO C_EDUCAÇÃO C_ENGENHARIAS_I B3_ENGENHARIAS_II C_ENGENHARIAS_III B4_ENSINO_DE_CIÊNCIAS_E_MATEMATICA B5_GEOCIÊNCIAS B2_INTERDISCIPLINAR B5_MATEMÁTICA_/_PROBABILIDADE_E_ESTATÍSTICA B3_MEDICINA_I B3_MEDICINA_II B3_PSICOLOGIA |
History (UTC) | 2012-08-14 11:34:04 :: marciana -> administrator :: 2012-08-14 11:34:04 :: administrator -> marciana :: 2012 2012-08-29 17:11:29 :: marciana -> administrator :: 2012 2012-08-30 15:11:17 :: administrator -> marciana :: 2012 2012-12-03 15:32:33 :: marciana -> administrator :: 2012 2013-01-20 15:47:16 :: administrator -> marciana :: 2012 2013-01-30 15:19:18 :: marciana -> administrator :: 2012 2018-06-05 04:12:40 :: administrator -> marciana :: 2012 |
|
3. Content and structure | |
Is the master or a copy? | is the master |
Content Stage | completed |
Transferable | 1 |
Content Type | External Contribution |
Version Type | finaldraft |
Keywords | Computer Security Malware Analysis |
Abstract | Malicious programs pose a major threat to Internet-connected systems, increasing the importance of studying their behavior in order to fight against them. In this paper, we propose definitions to the different types of behavior that a program can present during its execution. Based on those definitions, we define suspicious behavior as the group of actions that change the state of a target system. We also propose a set of network and system-level dangerous activities that can be used to denote the malignity in suspicious behaviors, which were extracted from a large set of malware samples. In addition, we evaluate the malware samples according to their suspicious behavior. Moreover, we developed filters to translate from lower-level execution traces to the observed dangerous activities and evaluated them in the context of actual malware. |
Area | COMP |
Arrangement | urlib.net > BDMCI > Fonds > Produção anterior à 2021 > LABAC > Pinpointing Malicious Activities... |
doc Directory Content | access |
source Directory Content | there are no files |
agreement Directory Content | |
|
4. Conditions of access and use | |
data URL | http://urlib.net/ibi/8JMKD3MGP7W/3CEPDR8 |
zipped data URL | http://urlib.net/zip/8JMKD3MGP7W/3CEPDR8 |
Language | en |
User Group | administrator marciana |
Reader Group | administrator marciana |
Visibility | shown |
Archiving Policy | denypublisher denyfinaldraft12 |
Read Permission | allow from all |
Update Permission | not transferred |
|
5. Allied materials | |
Mirror Repository | sid.inpe.br/mtc-m19@80/2009/08.21.17.02.53 |
Next Higher Units | 8JMKD3MGPCW/3ESGTTP |
Citing Item List | sid.inpe.br/bibdigital/2013/09.22.23.14 3 sid.inpe.br/mtc-m21/2012/07.13.14.58.32 1 |
Dissemination | WEBSCI; PORTALCAPES; COMPENDEX. |
Host Collection | sid.inpe.br/mtc-m19@80/2009/08.21.17.02 |
|
6. Notes | |
Notes | 12th International Conference on Computational Science and Its Applications, ICCSA 2012 Salvador de Bahia 18 June 2012through21 June 2012 Code90945 |
Empty Fields | alternatejournal archivist callnumber copyholder copyright creatorhistory descriptionlevel e-mailaddress format isbn label lineage mark month nextedition orcid parameterlist parentrepositories previousedition previouslowerunit progress project rightsholder schedulinginformation secondarydate session shorttitle sponsor subject targetfile tertiarymark tertiarytype typeofwork url |
|
7. Description control | |
e-Mail (login) | marciana |
update | |
|