Skip to Main content Skip to Navigation
Conference papers

Morphological Detection of Malware

Guillaume Bonfante 1 Matthieu Kaczmarek 1 Jean-Yves Marion 1
1 CARTE - Theoretical adverse computations, and safety
Inria Nancy - Grand Est, LORIA - FM - Department of Formal Methods
Abstract : In the field of malware detection, method based on syntactical consideration are usually efficient. However, they are strongly vulnerable to obfuscation techniques. This study proposes an efficient construction of a morphological malware detector based on a syntactic and a semantic analysis, technically on control flow graphs of programs (CFG). Our construction employs tree automata techniques to provide an efficient representation of the CFG database. Next, we deal with classic obfuscation of programs by mutation using a generic graph rewriting engine. Finally, we carry out experiments to evaluate the false-positive ratio of the proposed methods.
Document type :
Conference papers
Complete list of metadata

Cited literature [10 references]  Display  Hide  Download
Contributor : Matthieu Kaczmarek Connect in order to contact the contributor
Submitted on : Monday, October 13, 2008 - 9:39:39 PM
Last modification on : Saturday, October 16, 2021 - 11:26:05 AM
Long-term archiving on: : Tuesday, October 9, 2012 - 12:03:09 PM


Files produced by the author(s)


  • HAL Id : inria-00330021, version 1



Guillaume Bonfante, Matthieu Kaczmarek, Jean-Yves Marion. Morphological Detection of Malware. International Conference on Malicious and Unwanted Software, Fernando C. Colon Osorio, Oct 2008, Alexendria VA, United States. ⟨inria-00330021⟩



Record views


Files downloads