Share Email Print

Proceedings Paper

Digital microarray analysis for digital artifact genomics
Author(s): Holger Jaenisch; James Handley; Deborah Williams
Format Member Price Non-Member Price
PDF $14.40 $18.00

Paper Abstract

We implement a Spatial Voting (SV) based analogy of microarray analysis for digital gene marker identification in malware code sections. We examine a famous set of malware formally analyzed by Mandiant and code named Advanced Persistent Threat (APT1). APT1 is a Chinese organization formed with specific intent to infiltrate and exploit US resources. Manidant provided a detailed behavior and sting analysis report for the 288 malware samples available. We performed an independent analysis using a new alternative to the traditional dynamic analysis and static analysis we call Spatial Analysis (SA). We perform unsupervised SA on the APT1 originating malware code sections and report our findings. We also show the results of SA performed on some members of the families associated by Manidant. We conclude that SV based SA is a practical fast alternative to dynamics analysis and static analysis.

Paper Details

Date Published: 6 June 2013
PDF: 20 pages
Proc. SPIE 8757, Cyber Sensing 2013, 87570N (6 June 2013); doi: 10.1117/12.2030990
Show Author Affiliations
Holger Jaenisch, Johns Hopkins Univ. (United States)
Licht Strahl Engineering, Inc. (United States)
Sentar, Inc. (United States)
James Handley, Licht Strahl Engineering, Inc. (United States)
Sentar, Inc. (United States)
Deborah Williams, Sentar, Inc. (United States)

Published in SPIE Proceedings Vol. 8757:
Cyber Sensing 2013
Igor V. Ternovskiy; Peter Chin, Editor(s)

© SPIE. Terms of Use
Back to Top