ATTENTION: The works hosted here are being migrated to a new repository that will consolidate resources, improve discoverability, and better show UTA's research impact on the global community. We will update authors as the migration progresses. Please see MavMatrix for more information.
Show simple item record
dc.contributor.advisor | Ming, Jiang | |
dc.creator | Patel, Jay Mayank | |
dc.date.accessioned | 2019-05-28T21:57:33Z | |
dc.date.available | 2019-05-28T21:57:33Z | |
dc.date.created | 2019-05 | |
dc.date.issued | 2019-05-08 | |
dc.date.submitted | May 2019 | |
dc.identifier.uri | http://hdl.handle.net/10106/28133 | |
dc.description.abstract | Most of the malware authors use Packers, to compress an executable file and attach a stub, to the file containing the code, to decompress it at runtime, which will turn a known piece of malware into something new, that known-malware scanners can't detect. The researchers are finding ways to unpack and find the original program from such packed binaries. However, the previous study of detection for unpacking in the packed malware using different approach won’t provide many promising results.
This research explores a novel approach for the detection of the unpacking process using hardware performance counters. In this approach, the unpacking process is closely monitored with Hardware Performance Counters. The HPCs shows hot spot during the unpacking process. By performing the per-process filtration, HPCs show a close relation with the decompression algorithm. For this research, the analysis is performed on a bare-metal machine. The packed executable is profiled for hardware calls using Intel® VTune™ Amplifier. | |
dc.format.mimetype | application/pdf | |
dc.language.iso | en_US | |
dc.subject | HPC | |
dc.subject | Malware analysis | |
dc.subject | Binary packing | |
dc.subject | Binary unpacking | |
dc.title | ON THE FEASIBILITY OF MALWARE UNPACKING WITH HARDWARE PERFORMANCE COUNTERS | |
dc.type | Thesis | |
dc.degree.department | Computer Science and Engineering | |
dc.degree.name | Master of Science in Computer Science | |
dc.date.updated | 2019-05-28T21:57:48Z | |
thesis.degree.department | Computer Science and Engineering | |
thesis.degree.grantor | The University of Texas at Arlington | |
thesis.degree.level | Masters | |
thesis.degree.name | Master of Science in Computer Science | |
dc.type.material | text | |
Files in this item
- Name:
- PATEL-THESIS-2019.pdf
- Size:
- 830.2Kb
- Format:
- PDF
This item appears in the following Collection(s)
Show simple item record