Analysis and Comparison of Disassemblers for OpCode Based Malware Analysis

Nar M., Kakisim A., Yavuz M. N., Sogukpinar I.

4th International Conference on Computer Science and Engineering (UBMK), Samsun, Türkiye, 11 - 15 Eylül 2019, ss.17-22, (Tam Metin Bildiri) identifier identifier

  • Yayın Türü: Bildiri / Tam Metin Bildiri
  • Doi Numarası: 10.1109/ubmk.2019.8907153
  • Basıldığı Şehir: Samsun
  • Basıldığı Ülke: Türkiye
  • Sayfa Sayıları: ss.17-22
  • Yıldız Teknik Üniversitesi Adresli: Hayır

Özet

In this work, disassembler effect has been investigated on the detection performance of opcode-based malware detection methods. Opcode analysis is widely used to detect malware programs. Our experimental results presented which disassembler is more suitable with the analysis method for the best performance. Therefore, researchers will be guided with the results obtained in this work for their static opcode based PE file analysis.