Detection of encrypted executable files based on entropy analysis to determine the randomness measure of byte sequences

I. V. Alekseev; V. V. Platonov

doi:10.3103/S0146411617080041

Detection of encrypted executable files based on entropy analysis to determine the randomness measure of byte sequences

作者: Alekseev I.V.¹, Platonov V.V.¹
隶属关系:
1. Peter the Great St. Petersburg Polytechnic University
期: 卷 51, 编号 8 (2017)
页面: 915-920
栏目: Article
URL: https://journals.rcsi.science/0146-4116/article/view/175069
DOI: https://doi.org/10.3103/S0146411617080041
ID: 175069

如何引用文章

全文:

开放存取

##reader.subscriptionAccessGranted##
受限制的访问

订阅存取

详细
作者简介
参考
补充文件
统计

详细

A method has been proposed for identifying malicious programs that use encryption as a disguise. In this paper, a modification of the statistical spectral test based on entropy analysis has been described.

关键词

detection of potentially malicious software, encoder, statistical tests, entropy

作者简介

I. Alekseev

Peter the Great St. Petersburg Polytechnic University

编辑信件的主要联系方式.
Email: ialexeev@ibks.spbstu.ru
俄罗斯联邦, St. Petersburg

V. Platonov

Peter the Great St. Petersburg Polytechnic University

Email: ialexeev@ibks.spbstu.ru
俄罗斯联邦, St. Petersburg

补充文件

附件文件

动作

1. JATS XML

下载

用户名
密码
记住我

忘记您的密码?	注册

用户名
密码
记住我

忘记您的密码?	注册