Skip to main content
Conference Proceedings

Detection of polymorphic viruses in windows executables

Communications in Computer and Information Science (2010) 95 CCIS(PART 2) 120-130
DOI: 10.1007/978-3-642-14825-5_11
2Citations
Citations of this article
4Readers
Mendeley users who have this article in their library.
Get full text

Abstract

Polymorphic viruses are viruses which unpack themselves at runtime and infect files with a new mutated virus body. Most of the current solutions present blacklist a set of packer. Research has shown many polymorphic viruses to go undetected. This work aims at the problem of detection of such viruses using emulation technique. The main target is to improve the detection rate and reduce false positives. Bochs is a powerful x86-64 emulator and the system has been implemented on Bochs and could successfully detect self-modifying code in test viruses. © 2010 Springer-Verlag Berlin Heidelberg.

Author supplied keywords

Cite

CITATION STYLE

APA

Kasina, A., Suthar, A., & Kumar, R. (2010). Detection of polymorphic viruses in windows executables. In Communications in Computer and Information Science (Vol. 95 CCIS, pp. 120–130). https://doi.org/10.1007/978-3-642-14825-5_11

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free