Polymorphic viruses are viruses which unpack themselves at runtime and infect files with a new mutated virus body. Most of the current solutions present blacklist a set of packer. Research has shown many polymorphic viruses to go undetected. This work aims at the problem of detection of such viruses using emulation technique. The main target is to improve the detection rate and reduce false positives. Bochs is a powerful x86-64 emulator and the system has been implemented on Bochs and could successfully detect self-modifying code in test viruses. © 2010 Springer-Verlag Berlin Heidelberg.
CITATION STYLE
Kasina, A., Suthar, A., & Kumar, R. (2010). Detection of polymorphic viruses in windows executables. In Communications in Computer and Information Science (Vol. 95 CCIS, pp. 120–130). https://doi.org/10.1007/978-3-642-14825-5_11
Mendeley helps you to discover research relevant for your work.