Skip to Main content Skip to Navigation
Conference papers

Server-Side Dynamic Code Analysis

Wadie Guizani 1 Jean-Yves Marion 1 Daniel Reynaud 1
1 CARTE - Theoretical adverse computations, and safety
LORIA - FM - Department of Formal Methods , Inria Nancy - Grand Est
Abstract : The common use of packers is a real challenge for the anti-virus community. Indeed, a static signature analysis can usually only detect and sometimes remove known packers if a specific unpacking routine has been programmed manually. Generic unpacking does not solve the problem due to its limited effectiveness. Additionally, the important number of binaries to scan on a daily basis makes automated analysis necessary in order to protect information systems. In this context, we propose a taxonomy of self-modifying behaviors, a generic method to detect them in potentially malicious samples and a scalable architecture for the distributed analysis of a high volume of binaries.
Document type :
Conference papers
Complete list of metadata

Cited literature [24 references]  Display  Hide  Download
Contributor : Wadie Guizani Connect in order to contact the contributor
Submitted on : Thursday, October 22, 2009 - 11:04:02 AM
Last modification on : Saturday, October 16, 2021 - 11:26:05 AM
Long-term archiving on: : Tuesday, October 16, 2012 - 12:35:08 PM


Files produced by the author(s)


  • HAL Id : inria-00425554, version 1



Wadie Guizani, Jean-Yves Marion, Daniel Reynaud. Server-Side Dynamic Code Analysis. 4th International Conference on Malicious and Unwanted Software - Malware 2009, Fernando C. Colon Osorio, Oct 2009, Montréal, Canada. pp.55-62. ⟨inria-00425554⟩



Record views


Files downloads