Loading...
Effective methods to detect metamorphic malware: A systematic review
Irshad, Mustafa Mansour, Ali Ashawa, Moses Hamisu, Muhammad
Irshad, Mustafa
Mansour, Ali
Ashawa, Moses
Hamisu, Muhammad
Editors
Other contributors
Affiliation
Epub Date
Issue Date
2018-03-28
Submitted date
Alternative
Abstract
The succeeding code for metamorphic Malware is routinely rewritten to remain stealthy and undetected within infected environments. This characteristic is maintained by means of encryption and decryption methods, obfuscation through garbage code insertion, code transformation and registry modification which makes detection very challenging. The main objective of this study is to contribute an evidence-based narrative demonstrating the effectiveness of recent proposals. Sixteen primary studies were included in this analysis based on a pre-defined protocol. The majority of the reviewed detection methods used Opcode, Control Flow Graph (CFG) and API Call Graph. Key challenges facing the detection of metamorphic malware include code obfuscation, lack of dynamic capabilities to analyse code and application difficulty. Methods were further analysed on the basis of their approach, limitation, empirical evidence and key parameters such as dataset, Detection Rate (DR) and False Positive Rate (FPR).
Citation
Irshad, M. (2018) Effective methods to detect metamorphic malware: A systematic review, International Journal of Electronic Security and Digital Forensics DOI 10.1504/IJESDF.2018.090948
Publisher
Research Unit
PubMed ID
PubMed Central ID
Embedded videos
Additional Links
Type
Journal article
Language
en
Description
Series/Report no.
ISSN
1751-911X
EISSN
ISBN
ISMN
Gov't Doc #
Sponsors
Rights
Attribution-NonCommercial-NoDerivs 3.0 United States