[转载]Behavioral and Structural Properties of Malicious Code
信息来源:[url]http://www.auto.tuwien.ac.at/~chris/[/url]In this chapter, we introduce techniques to characterize behavioral and structural properties of binary code. These techniques can be used to generate more abstract, semantically-rich descriptions of malware, and to characterize classes of malicious code instead of specific instances. This makes the specification more robust against modifications of the syntactic layout of the code. Also, in some cases, it allows the detection of novel malware instances.
页:
[1]