Windows malware: traces in the host

In the present world of information and interconnection, malware is a latent threat. Just speaking of ?ill-intended software? gives a too broad definition: malware has evolved and taken different forms through the years. It is necessary to know and understand the traces that remain in a computer sys...

Descripción completa

Detalles Bibliográficos
Autores principales: Ruiz de Angeli, Gonzalo, Alberdi, Juan Ignacio, Constanzo, Bruno, Curti, Hugo, Di Iorio, Ana Hayd?e
Formato: info:eurepo/semantics/conferenceObject Documento de conferencia submittedVersion
Lenguaje:Español
Publicado: IX Congreso Iberoamericano de Seguridad Inform?tica. CIBSI 2017 2017
Materias:
Host-based signatures
Malware
Inform?tica forense
DFIR
Windows registry
DLLs
Portable executable
Acceso en línea:http://redi.ufasta.edu.ar:8082/jspui/handle/123456789/1597
Aporte de:
Repositorio Digital (UFASTA) de Universidad FASTA
id I42-R148-123456789-1597
record_format dspace
institution Universidad FASTA
institution_str I-42
repository_str R-148
collection Repositorio Digital (UFASTA)
language Español
topic Host-based signatures
Malware
Inform?tica forense
DFIR
Windows registry
DLLs
Portable executable
spellingShingle Host-based signatures
Malware
Inform?tica forense
DFIR
Windows registry
DLLs
Portable executable
Ruiz de Angeli, Gonzalo
Alberdi, Juan Ignacio
Constanzo, Bruno
Curti, Hugo
Di Iorio, Ana Hayd?e
Windows malware: traces in the host
topic_facet Host-based signatures
Malware
Inform?tica forense
DFIR
Windows registry
DLLs
Portable executable
description In the present world of information and interconnection, malware is a latent threat. Just speaking of ?ill-intended software? gives a too broad definition: malware has evolved and taken different forms through the years. It is necessary to know and understand the traces that remain in a computer system after an infection. For years the information security community has focused on live analysis and response against these threats, so there is a huge opportunity to adapt and make post-mortem, host-based signatures. In this work, some features that may work as malware signatures for digital forensics experts are proposed.
format info:eurepo/semantics/conferenceObject
Documento de conferencia
submittedVersion
author Ruiz de Angeli, Gonzalo
Alberdi, Juan Ignacio
Constanzo, Bruno
Curti, Hugo
Di Iorio, Ana Hayd?e
author_facet Ruiz de Angeli, Gonzalo
Alberdi, Juan Ignacio
Constanzo, Bruno
Curti, Hugo
Di Iorio, Ana Hayd?e
author_sort Ruiz de Angeli, Gonzalo
title Windows malware: traces in the host
title_short Windows malware: traces in the host
title_full Windows malware: traces in the host
title_fullStr Windows malware: traces in the host
title_full_unstemmed Windows malware: traces in the host
title_sort windows malware: traces in the host
publisher IX Congreso Iberoamericano de Seguridad Inform?tica. CIBSI 2017
publishDate 2017
url http://redi.ufasta.edu.ar:8082/jspui/handle/123456789/1597
work_keys_str_mv AT ruizdeangeligonzalo windowsmalwaretracesinthehost
AT alberdijuanignacio windowsmalwaretracesinthehost
AT constanzobruno windowsmalwaretracesinthehost
AT curtihugo windowsmalwaretracesinthehost
AT diiorioanahayde windowsmalwaretracesinthehost
bdutipo_str Repositorios
_version_ 1764820536224907265

Ejemplares similares