Abstract

ABSTRACTDynamic analysis is typically performed in a closed network environment to prevent the malware under analysis from attacking machines on the Internet. However, many of today's malwares require Internet connectivity to operate and to be thoroughly analyzed in a closed network environment. We propose a secure and transparent network environment that allows the malware in a dynamic analysis environment to have seemingly unrestricted Internet access in a secure manner. Our environment transparently dispatches malicious network traffic to compatible decoys while allowing harmless control traffic to have Internet access. We use 12 real‐world malware samples, which involve Internet connections, to evaluate the effectiveness of the proposed environment. The evaluation shows that the proposed environment can allow malware to exhibit more network activities than a closed network environment and can even outperform the baseline open network environment in some cases. In the meantime, Internet security is maintained by the dispatching of attack and propagation traffic to decoys inside the analysis environment. Copyright © 2013 John Wiley & Sons, Ltd.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Automated, Dynamic Android App Vulnerability and Privacy Leak Analysis: Design Considerations, Required Components and Available Tools
Kris Heid ... Jens Heider
-
Kris Heid, et. al.Kris Heid ... Jens Heider
10 Nov 2021
Controlling malware HTTP communications in dynamic analysis system using search engine
Kazufumi Aoki ... Mitsutaka Itoh
-
Kazufumi Aoki, et. al.Kazufumi Aoki ... Mitsutaka Itoh
01 Sep 2011
Detection of malicious software by analyzing the behavioral artifacts using machine learning algorithms
Jagsir Singh ... Jaswinder Singh
Information and Software Technology | VOL. 121
Jagsir Singh, et. al.Jagsir Singh ... Jaswinder Singh
01 Feb 2020
Dynamic analysis environment for nuclear forensic analyses
C.L Stork ... B.L Goldblum
Computer Physics Communications | VOL. 210
C.L Stork, et. al.C.L Stork ... B.L Goldblum
05 Oct 2016
View more papers

More From: Security and Communication Networks

Paper Title
Journal
Date
Author
HMMED: A Multimodal Model with Separate Head and Payload Processing for Malicious Encrypted Traffic Detection
Peng Xiao ... Jian Hu
Security and Communication Networks | VOL. -
Peng Xiao, et. al.Peng Xiao ... Jian Hu
30 May 2024
A Robust Coverless Image Steganography Algorithm Based on Image Retrieval with SURF Features
Fan Li ... Chenyang Liu
Security and Communication Networks | VOL. 2024
Fan Li, et. al.Fan Li ... Chenyang Liu
18 May 2024
Effective and Efficient Android Malware Detection and Category Classification Using the Enhanced KronoDroid Dataset
Mudassar Waheed ... Sana Qadir
Security and Communication Networks | VOL. 2024
Mudassar Waheed, et. al.Mudassar Waheed ... Sana Qadir
08 Apr 2024
Securing the Transmission While Enhancing the Reliability of Communication Using Network Coding in Block-Wise Transfer of CoAP
Mohammed D Halloush
Security and Communication Networks | VOL. 2024
Mohammed D HalloushMohammed D Halloush
28 Mar 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.