Automatic generation of vaccines for malware immunization Conference Paper

abstract

• Inspired by the biological vaccines, we explore the possibility of developing similar vaccines for malware immunization. We provide the first systematic study towards this direction and present a prototype system, AGAMI, for automatic generation of vaccines for malware immunization. With a novel use of several dynamic malware analysis techniques, we show that it is possible to extract a lightweight vaccine from current malware, and after injecting such vaccine on clean machines, they can be immune from future infection from the same malware family. We evaluate AGAMI on a large set of real-world malware samples and successfully extract working vaccines for many families such as Conficker and Zeus. We believe it is an appealing complementary technique to existing malware defense solutions.

name of conference

• Proceedings of the 2012 ACM conference on Computer and communications security

authors

• Gu, Guofei

published proceedings

• Proceedings of the 2012 ACM conference on Computer and communications security

author list (cited authors)

• Xu, Z., Zhang, J., Gu, G., & Lin, Z.

citation count

• 2

complete list of authors

• Xu, Zhaoyan||Zhang, Jialong||Gu, Guofei||Lin, Zhiqiang

publication date

• January 2012

publisher

• Association for Computing Machinery (ACM)  Publisher

published in

• Proceedings of the ACM Conference on Computer and Communications Security  Journal

keywords

• 3 Good Health And Well Being
• 3 Prevention Of Disease And Conditions, And Promotion Of Well-being
• 3.4 Vaccines
• Biotechnology
• Immunization
• Prevention
• Vaccine Related

Digital Object Identifier (DOI)

• 10.1145/2382196.2382317

International Standard Book Number (ISBN) 13

• 9781450316507

start page

• 1037

end page

• 1039

URL

• http%3A%2F%2Fdx.doi.org%2F10.1145%2F2382196.2382317

user-defined tag

• 3 Good Health and Well-Being