Denial-of-Service attacks on host-based generic unpackers

Authors:
Limin Liu;Jiang Ming;Zhi Wang;Debin Gao;Chunfu Jia
Affiliations:
State Key Lab of Information Security, Graduate University of CAS, China;School of Information Systems, Singapore Management University, Singapore;School of Information Systems, Singapore Management University, Singapore;School of Information Systems, Singapore Management University, Singapore;College of Information Technology and Science, Nankai University, China
Venue:
ICICS'09 Proceedings of the 11th international conference on Information and Communications Security
Year:
2009

Citing 5
Cited 0

PolyUnpack: Automating the Hidden-Code Extraction of Unpack-Executing Malware

ACSAC '06 Proceedings of the 22nd Annual Computer Security Applications Conference
Renovo: a hidden code extractor for packed executables

Proceedings of the 2007 ACM workshop on Recurring malcode
A Study of the Packer Problem and Its Solutions

RAID '08 Proceedings of the 11th international symposium on Recent Advances in Intrusion Detection
Eureka: A Framework for Enabling Static Malware Analysis

ESORICS '08 Proceedings of the 13th European Symposium on Research in Computer Security: Computer Security
Detecting system emulators

ISC'07 Proceedings of the 10th international conference on Information Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

With the advance of packing techniques, a few generic and automatic unpackers have been proposed. These unpackers are designed to automatically unpack packed binaries without specific knowledge of the packing techniques used. In this paper, we present an automatic packer with which packed malware forges spurious unpacking behaviors that lead to a denial-of-service attack on host-based generic unpackers. We present the design, implementation, and evaluation of the proposed packer and malware produced using the proposed packer, and show the success of denial-of-service attacks on host-based generic unpackers.