Behavioral Clustering of HTTP-Based Malware and Signature Generation Using Malicious Network Traces

@inproceedings{Perdisci2010BehavioralCO,
  title={Behavioral Clustering of HTTP-Based Malware and Signature Generation Using Malicious Network Traces},
  author={Roberto Perdisci and Wenke Lee and Nick Feamster},
  booktitle={NSDI},
  year={2010}
}
We present a novel network-level behavioral malware clustering system. We focus on analyzing the structural similarities among malicious HTTP traffic traces generated by executing HTTP-based malware. Our work is motivated by the need to provide quality input to algorithms that automatically generate network signatures. Accordingly, we define similarity metrics among HTTP traces and develop our system so that the resulting clusters can yield high-quality malware signatures. We implemented a… CONTINUE READING
Highly Influential
This paper has highly influenced 30 other papers. REVIEW HIGHLY INFLUENTIAL CITATIONS
Highly Cited
This paper has 317 citations. REVIEW CITATIONS

Citations

Publications citing this paper.
Showing 1-10 of 200 extracted citations

317 Citations

02040'11'13'15'17
Citations per Year
Semantic Scholar estimates that this publication has 317 citations based on the available data.

See our FAQ for additional information.

References

Publications referenced by this paper.
Showing 1-10 of 26 references

Web based botnet command and control kit

  • D. Danchev
  • 2008
Highly Influential
3 Excerpts

Similar Papers

Loading similar papers…