Embedded Malware Detection Using Markov n-Grams

@inproceedings{Shafiq2008EmbeddedMD,
  title={Embedded Malware Detection Using Markov n-Grams},
  author={Muhammad Zubair Shafiq and Syed Ali Khayam and Muddassar Farooq},
  booktitle={DIMVA},
  year={2008}
}
Embedded malware is a recently discovered security threat that allows malcode to be hidden inside a benign file. It has been shown that embedded malware is not detected by commercial antivirus software even when the malware signature is present in the antivirus database. In this paper, we present a novel anomaly detection scheme to detect embedded malware. We first analyze byte sequences in benign files to show that benign files’ data generally exhibit a 1-st order dependence structure… CONTINUE READING
Highly Cited
This paper has 90 citations. REVIEW CITATIONS

From This Paper

Topics from this paper.

Citations

Publications citing this paper.

91 Citations

01020'10'12'14'16'18
Citations per Year
Semantic Scholar estimates that this publication has 91 citations based on the available data.

See our FAQ for additional information.

References

Publications referenced by this paper.
Showing 1-7 of 7 references

Vulnerabilities in Portable Executable (PE) File Format For Win32 Architecture, TR

  • Yinrong Huang
  • Exurity Inc.,
  • 2006

Zero-day attacks continue to hit Microsoft, News.com

  • Joris Evers
  • 2006

Similar Papers

Loading similar papers…