Abstract

Malware writers constantly seek new methods to increase the infection lifetime of their malicious software. To that end, techniques such as code unpacking and polymorphism have become the norm for hindering automated or manual malware analysis and evading virus scanners. In this paper, we demonstrate how malware can take advantage of the ubiquitous and powerful graphics processing unit (GPU) to increase its robustness against analysis and detection. We present the design and implementation of brute-force unpacking and runtime polymorphism, two code armoring techniques based on the general-purpose computing capabilities of modern graphics processors. By running part of the malicious code on a different processor architecture with ample computational power, these techniques pose significant challenges to existing malware detection and analysis systems, which are tailored to the analysis of CPU code. We also discuss how upcoming GPU features can be used to build even more robust and evasive malware, as well as directions for potential defenses against GPU-assisted malware.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Accelerating video decoding using GPU
Guobin Shen ... Lihua Zhu
-
Guobin Shen, et. al. Guobin Shen ... Lihua Zhu
06 Apr 2003
Massively Parallel Network Coding on GPUs
Xiaowen Chu ... Kaiyong Zhao
-
Xiaowen Chu, et. al.Xiaowen Chu ... Kaiyong Zhao
01 Dec 2008
Motion estimation for H.264/AVC on multiple GPUs using NVIDIA CUDA
Bart Pieters ... Peter Lambert
-
Bart Pieters, et. al.Bart Pieters ... Peter Lambert
20 Aug 2009
Spectroscopic optical coherence tomography with graphics processing unit based analysis of three dimensional data sets
Volker Jaedicke ... Nils C Gerhardt
-
Volker Jaedicke, et. al.Volker Jaedicke ... Nils C Gerhardt
21 Feb 2013
View more papers

More From: International Journal of Information Security

Paper Title
Journal
Date
Author
Transformer or Autoencoder? Who is the ultimate adversary for attack detectors?
Sonia Laudanna ... Gerardo Canfora
International Journal of Information Security | VOL. 24
Sonia Laudanna, et. al.Sonia Laudanna ... Gerardo Canfora
13 Nov 2024
pbins: private bins for top-k semantic search over encrypted data using transformers
John Prakash Arockiasamy ... Srinivasan Palaniswami
International Journal of Information Security | VOL. 24
John Prakash Arockiasamy, et. al.John Prakash Arockiasamy ... Srinivasan Palaniswami
12 Nov 2024
How engaged are you? A forensic analysis of the Oura Ring Gen 3 application across iOS, Android, and Cloud platforms
Miloš Stanković ... Umit Karabiyik
International Journal of Information Security | VOL. 24
Miloš Stanković, et. al.Miloš Stanković ... Umit Karabiyik
12 Nov 2024
Aldp-fl: an adaptive local differential privacy-based federated learning mechanism for IoT
Jinguo Li ... Jing Wu
International Journal of Information Security | VOL. 24
Jinguo Li, et. al.Jinguo Li ... Jing Wu
11 Nov 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.