Anti-Anti-Debugging Study to Understand and Disable Anti-Debugging for Malware Analysis 


Vol. 45,  No. 1, pp. 105-116, Jan.  2020
10.7840/kics.2020.45.1.105


PDF
  Abstract

Recently, e-mail attacks and spear phishing attacks, which purported to be corporations and civil servants, are taking root. Among the attack techniques, a phishing technique for redirecting a user to a spoofed Web site hosted with malicious code to induce input of personal and financial information of the user, and to exploit a crime has been used. Although the development of vaccine programs has been constantly updated to prevent such threats, attackers who make malicious code can use various technologies to interfere with and delay analysis of analysts and apply various techniques to increase the life span of malicious code and combines it with social engineering techniques to enhance malicious code. Anti-debugging is a typical technique used for malicious code concealment. Anti-debugging is used to protect malware it-self. In this paper, we describe the packing method for concealing malicious code and the anti-debugging technique for protecting malicious code as described above. In addition, we proposed anti-anti-debugging schemes to disable anti-debugging techniques and applied and analyzed example programs to verify the anti-debugging behavior and the anti-anti-debugging scheme proposed in this study.

  Statistics
Cumulative Counts from November, 2022
Multiple requests among the same browser session are counted as one view. If you mouse over a chart, the values of data points will be shown.


  Cite this article

[IEEE Style]

J. Kim, J. Bang, M. Choi, "Anti-Anti-Debugging Study to Understand and Disable Anti-Debugging for Malware Analysis," The Journal of Korean Institute of Communications and Information Sciences, vol. 45, no. 1, pp. 105-116, 2020. DOI: 10.7840/kics.2020.45.1.105.

[ACM Style]

Jong-Wouk Kim, Jiwon Bang, and Mi-Jung Choi. 2020. Anti-Anti-Debugging Study to Understand and Disable Anti-Debugging for Malware Analysis. The Journal of Korean Institute of Communications and Information Sciences, 45, 1, (2020), 105-116. DOI: 10.7840/kics.2020.45.1.105.

[KICS Style]

Jong-Wouk Kim, Jiwon Bang, Mi-Jung Choi, "Anti-Anti-Debugging Study to Understand and Disable Anti-Debugging for Malware Analysis," The Journal of Korean Institute of Communications and Information Sciences, vol. 45, no. 1, pp. 105-116, 1. 2020. (https://doi.org/10.7840/kics.2020.45.1.105)

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

POPULAR KEYWORDS
(TOP 10 KEYWORDS)

Recent Publications
(LAST 3 YEARS)






pISSN : 1226 - 4717
eISSN : 2287 - 3880