Cross-Layer Analysis of Malware Datasets for Malicious Campaign Identification - Research Paper Database - NASK - Sense of telecommunications

First in Poland Computer Emergency Response Team Link prowadzi do zewnętrznego serwisu
Contact point to report illegal content uploaded online. Link prowadzi do zewnętrznego serwisu
A knowledge base on cybersecurity and modern technologies including various strategic, regulatory, organisational and practical aspects. Link prowadzi do zewnętrznego serwisu
A project aimed at raising public awareness of the threats posed by the latest communication techniques. Link prowadzi do zewnętrznego serwisu
National Domain Registry Link prowadzi do zewnętrznego serwisu
Our main goal is to provide fast and secure internet for every school in Poland. Link prowadzi do zewnętrznego serwisu
Support and promotion of active teachers Link prowadzi do zewnętrznego serwisu
Digital competence development Link prowadzi do zewnętrznego serwisu
The Educational Anti-smog Network is an awareness programme launched by us in partnership with the Polish Smog Alert for the purpose of improving air quality. Link prowadzi do zewnętrznego serwisu
A platform that allows for real-time detection of attempts to take over bank accounts and unauthorized financial transactions. Link prowadzi do zewnętrznego serwisu
Early detection of cyber threats in IT and OT networks Link prowadzi do zewnętrznego serwisu
Information exchange tool implemented in government administration Link prowadzi do zewnętrznego serwisu
Required-reading books Link prowadzi do zewnętrznego serwisu

Cross-Layer Analysis of Malware Datasets for Malicious Campaign Identification

Kruczkowski, M; Niewiadomska-Szynkiewicz, E; Kozakiewicz, A

Proceedings of the international Conference on Military Communications and Information Systems (ICMCIS);
Tom: -;
Strony: 1-7;
2015;

In this paper, we investigate the problem of detecting correlations among datasets containing malicious data concerned with various types of network attacks and related events of the infections taken from a numerous sources and organizations. We propose a graph based technique to depict relationships between malicious data based on values of attributes related both to attackers and victims, and referred to different layers of the OSI model. The presented model can be used to fast, automatic identification of malware campaigns. The case study described in the paper demonstrates the performance of our method.

Keywords: Malware, IP networks, Servers, Correlation, Databases, Software, Uniform resource locators

Website: https://www.google.pl/url?sa=t&rct=j&q=&esrc=s&source=web&cd=2&cad=rja&uact=8&ved=0ahUKEwj_kJP5iL3UAhVkOJoKHaB3ChAQFggrMAE&url=http%3A%2F%2Fieeexplore.ieee.org%2Fdocument%2F7158682%2F&usg=AFQjCNH5EPvvAvsdLoymQWuCXimkKRUKGw

All publications