Malware similarity and a new fuzzy hash: Compound Code Block Hash (CCBHash)
| dc.contributor.author | Onieva-González, José Antonio | |
| dc.contributor.author | Pérez-Jiménez, Pablo | |
| dc.contributor.author | López-Muñoz, Francisco Javier | |
| dc.date.accessioned | 2024-04-25T11:13:23Z | |
| dc.date.available | 2024-04-25T11:13:23Z | |
| dc.date.issued | 2024 | |
| dc.departamento | Lenguajes y Ciencias de la Computación | |
| dc.description.abstract | In the last few years, malware analysis has become increasingly important due to the rise of sophisticated cyberattacks. One of the objectives of this cybersecurity branch is to find similarities between different files or functions used by malware programmers, thus allowing malware detection, classification and even attribution in a timely manner. In this article we survey the state of the art in this area, reviewing the different techniques that can be applied to the field, with the objective of studying similarity, and therefore detecting, classifying and attributing malware samples. We have developed a fuzzy hash capable of characterizing malware by generating an easily comparable and storable signature of its functions. Since our goal is to detect these similarities in huge amounts of data within a reasonable time-frame, the size of the hash must be limited while retaining as much information as possible. | es_ES |
| dc.description.sponsorship | Funding for open access charge: Universidad de Málaga / CBUA | es_ES |
| dc.identifier.citation | Jose A. Onieva, Pablo Pérez Jiménez, Javier López, Malware similarity and a new fuzzy hash: Compound Code Block Hash (CCBHash), Computers & Security, Volume 142, 2024, 103856, ISSN 0167-4048, https://doi.org/10.1016/j.cose.2024.103856. | es_ES |
| dc.identifier.doi | 10.1016/j.cose.2024.103856 | |
| dc.identifier.uri | https://hdl.handle.net/10630/31151 | |
| dc.language.iso | eng | es_ES |
| dc.publisher | Elsevier | es_ES |
| dc.rights | Attribution-NonCommercial-NoDerivatives 4.0 Internacional | * |
| dc.rights.accessRights | open access | es_ES |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/4.0/ | * |
| dc.subject | Aplicaciones informáticas | es_ES |
| dc.subject | Virus informáticos | es_ES |
| dc.subject | Seguridad informática | es_ES |
| dc.subject.other | Hashes | es_ES |
| dc.subject.other | Fuzzy hashes | es_ES |
| dc.subject.other | Code similarity | es_ES |
| dc.subject.other | Malware | es_ES |
| dc.title | Malware similarity and a new fuzzy hash: Compound Code Block Hash (CCBHash) | es_ES |
| dc.type | journal article | es_ES |
| dc.type.hasVersion | VoR | es_ES |
| dspace.entity.type | Publication | |
| relation.isAuthorOfPublication | fafd97ab-7fd5-4caa-89ac-4fb9a0ef827a | |
| relation.isAuthorOfPublication | c1875514-a0c5-4d77-a6f1-f7dfc736eeb2 | |
| relation.isAuthorOfPublication.latestForDiscovery | fafd97ab-7fd5-4caa-89ac-4fb9a0ef827a |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- 1-s2.0-S0167404824001573-main.pdf
- Size:
- 1.92 MB
- Format:
- Adobe Portable Document Format
- Description: