Abstract

In real life, distinct runs of the same artifact lead to the exploration of different paths, due to either system's natural randomness or malicious constructions. These variations might completely change execution outcomes (extreme case). Thus, to analyze malware beyond theoretical models, we must consider the execution of multiple paths. The academic literature presents many approaches for multipath analysis (e.g., fuzzing, symbolic, and concolic executions), but it still fails to answer What's the current state of multipath malware tracing? This work aims to answer this question and also to point out What developments are still required to make them practical? Thus, we present a literature survey and perform experiments to bridge theory and practice. Our results show that (i) natural variation is frequent; (ii) fuzzing helps to discover more paths; (iii) fuzzing can be guided to increase coverage; (iv) forced execution maximizes path discovery rates; (v) pure symbolic execution is impractical, and (vi) concolic execution is promising but still requires further developments.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Detecting injection vulnerabilities in executable codes with concolic execution
Maryam Mouzarani ... Babak Sadeghiyan
-
Maryam Mouzarani, et. al.Maryam Mouzarani ... Babak Sadeghiyan
01 Nov 2017
RELEASE: Generating Exploits Using Loop-Aware Concolic Execution
Bing-Han Li ... Shiuhpyng Shieh
-
Bing-Han Li, et. al.Bing-Han Li ... Shiuhpyng Shieh
01 Jun 2011
SIFOL: Solving Implicit Flows in Loops for Concolic Execution
Yicheng Zeng ... Jiaqian Peng
-
Yicheng Zeng, et. al.Yicheng Zeng ... Jiaqian Peng
11 Nov 2022
Concolic Execution and Test Case Generation in Prolog
Germán Vidal
-
Germán VidalGermán Vidal
01 Jan 2015
View more papers

More From: Digital Threats: Research and Practice

Paper Title
Journal
Date
Author
Social Media Authentication and Combating Deepfakes using Semi-fragile Invisible Image Watermarking
Aakash Varma Nadimpalli ... Ajita Rattani
Digital Threats: Research and Practice | VOL. -
Aakash Varma Nadimpalli, et. al.Aakash Varma Nadimpalli ... Ajita Rattani
12 Oct 2024
Fuzzing and Symbolic Execution for Multipath Malware Tracing: Bridging Theory and Practice via Survey and Experiments
Marcus Botacin
Digital Threats: Research and Practice | VOL. -
Marcus BotacinMarcus Botacin
11 Oct 2024
Data Synthesis Is Going Mobile—On Community-Driven Dataset Generation for Android Devices
Markus Demmel ... Harald Baier
Digital Threats: Research and Practice | VOL. 5
Markus Demmel, et. al.Markus Demmel ... Harald Baier
30 Sep 2024
Does Cyber Insurance Promote Cyber Security Best Practice? An Analysis Based on Insurance Application Forms
Rodney Adriko ... Jason R C Nurse
Digital Threats: Research and Practice | VOL. 5
Rodney Adriko, et. al.Rodney Adriko ... Jason R C Nurse
30 Sep 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.