Techniques for Analysing PDF Malware
作者: Caglar Ulucenk , Vijay Varadharajan , Venkat Balakrishnan , Udaya Tupakula
关键词: Malware 、 Hypermedia 、 Computer security 、 Document handling 、 Scripting language 、 Static analysis 、 Computer science 、 World Wide Web
摘要: Today, PDF is one of the widely used applications for sharing documents. Some important factors popular use application are due to its platform independency and rich digital offerings such as ability include multimedia files, direct URL access HTTP communication. However wider acceptance among user community has also attracted attackers develop spread malware using files. Most existing security tools not equipped deal with attacks related PDF. In this paper we present different techniques that can be by an attacker generate attacks. Then propose portable document scanner (PDSCAN) which detect analyzing suspicious objects scripts embedded in PDSCAN makes dynamic static analysis malware. Finally detail a malicious file Virtual Box environment.
ieeecomputersociety.org
acm.org 参考文章(1)
Didier Stevens, Malicious PDF Documents Explained ieee symposium on security and privacy. ,vol. 9, pp. 80- 82 ,(2011) , 10.1109/MSP.2011.14