A New Malware Attack Pattern Generalization

Yusof, R. and Selamat, S. R. and Sahib, S. and Abdollah, M. F. and Mas'ud, M. Z. and Ramly, M. (2011) A New Malware Attack Pattern Generalization. In: Malaysian Technical Universities International Conference on Engineering & Technology (MUiCET 2011), 13-15 November 2011, UTHM, Batu Pahat, Johor.

[img] Microsoft Word
Generic_Malware_Attack_Pattern.docx - Submitted Version

Download (433kB)

Abstract

The significant threats of malware are still continuing due to their rapid distribution nature on the internet. The malware attack pattern from nine different attack scenarios have been extracted from various logs at different OSI layers such as victim logs, attacker logs and IDS alert log. These malware attack pattern are further analyzed to form the general malware attack pattern which describes the process of malware infection. This paper proposes a general attack pattern for malware in three different perspectives which is attacker, victim and victim/attacker or multi-step attack using only traditional worm variant. Hence, the general malware attack pattern can be extended into research areas in alert correlation and computer forensic investigation.

Item Type: Conference or Workshop Item (Paper)
Subjects: Q Science > Q Science (General)
Divisions: Faculty of Information and Communication Technology > Department of System and Computer Communication
Depositing User: Dr. Robiah Yusof
Date Deposited: 05 Dec 2011 01:25
Last Modified: 28 May 2015 02:17
URI: http://eprints.utem.edu.my/id/eprint/190
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item