Performance Comparison of Static Malware Analysis Tools Versus Antivirus Scanners To Detect Malware

YĂĽkleniyor...
Küçük Resim

Tarih

2017-11

Dergi Başlığı

Dergi ISSN

Cilt Başlığı

Yayıncı

Erişim Hakkı

info:eu-repo/semantics/openAccess

Ă–zet

Any software which executes malicious payloads on victim machines is considered as a malware such as the following: Viruses, worms, Trojan horses, rootkits, backdoor and ransomware. In recent years, the number and the severity of these malicious software have been increasing rapidly. The harm that malware inflicts on the world economy and private companies’ assets is increasing every day. Thus, there is an urgent need to detect and prevent malware before damaging to the important assets in world wide. There are lots of different methods and tools to combat against malware. In this paper, static malware analysis tools such as (Peid, PEview, Bintext, MD5deep, Dependency walker, and IDA Pro) and antivirus scanner tools such as (Norton, McAfee, Kaspersky, Avast, Avira, Bitdefender, and ClamAV) have been examined. In a test case, 200 malware and benign were collected from different sources and analyzed under different version of Window machines. Test results show that for existing malware, antivirus software detect malware fast and efficient when compared to static analysis tools. However, for unknown malware static analysis tools performed reasonably better than antivirus software.

Açıklama

Anahtar Kelimeler

Malware Analysis, Static Malware Analysis Tools, Malware Detection, Performance Comparison of Tools to Detect Malware

Kaynak

WoS Q DeÄźeri

Scopus Q DeÄźeri

Cilt

Sayı

KĂĽnye

Koleksiyon