MIME: A Formal Approach to (Android) Emulation Malware Analysis

被引:1
|
作者
Bellini, Fabio [1 ]
Chiodi, Roberto [1 ]
Mastroeni, Isabella [1 ]
机构
[1] Univ Verona, Dipartimento Informat, Verona, Italy
来源
FOUNDATIONS AND PRACTICE OF SECURITY (FPS 2015) | 2016年 / 9482卷
关键词
Anti-emulation malware; Abstract non-interference; Program analysis;
D O I
10.1007/978-3-319-30303-1_16
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
In this paper, we propose a new dynamic and configurable approach to anti-emulation malware analysis, aiming at improving transparency of existing analyses techniques. We test the effectiveness of existing widespread free analyzers and we observe that the main problem of these analyses is that they provide static and immutable values to the parameter used in anti-emulation tests. Our approach aims at overcoming these limitations by providing an abstract non-interference-based approach modeling the fact that parameters can be modified dynamically, and the corresponding executions compared.
引用
收藏
页码:259 / 267
页数:9
相关论文
共 31 条
  • [31] Spatio-Temporal Context Reduction: A Pointer-Analysis-Based Static Approach for Detecting Use-After-Free Vulnerabilities
    Yan, Hua
    Sui, Yulei
    Chen, Shiping
    Xue, Jingling
    PROCEEDINGS 2018 IEEE/ACM 40TH INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING (ICSE), 2018, : 327 - 337
1234