{"title":"Visual Basic中用于应用程序脚本的恶意软件混淆技术概述","authors":"Marilena Lupascu, Dragos Gavrilut, D. Lucanu","doi":"10.1109/SYNASC.2018.00051","DOIUrl":null,"url":null,"abstract":"In the ever changing malware landscape, office applications with support for VBA (Visual Basic for Applications) scripts have become an important piece of the puzzle, especially since they are one of the most effective email-based delivery method for new threats. This paper presents the research on approximatively 200 such cyber-attacks emphasizing social engineering techniques used, obfuscation methods applied and post-exploitation behavior.","PeriodicalId":273805,"journal":{"name":"2018 20th International Symposium on Symbolic and Numeric Algorithms for Scientific Computing (SYNASC)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"An Overview of Obfuscation Techniques used by Malware in Visual Basic for Application Scripts\",\"authors\":\"Marilena Lupascu, Dragos Gavrilut, D. Lucanu\",\"doi\":\"10.1109/SYNASC.2018.00051\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In the ever changing malware landscape, office applications with support for VBA (Visual Basic for Applications) scripts have become an important piece of the puzzle, especially since they are one of the most effective email-based delivery method for new threats. This paper presents the research on approximatively 200 such cyber-attacks emphasizing social engineering techniques used, obfuscation methods applied and post-exploitation behavior.\",\"PeriodicalId\":273805,\"journal\":{\"name\":\"2018 20th International Symposium on Symbolic and Numeric Algorithms for Scientific Computing (SYNASC)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2018-09-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2018 20th International Symposium on Symbolic and Numeric Algorithms for Scientific Computing (SYNASC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SYNASC.2018.00051\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 20th International Symposium on Symbolic and Numeric Algorithms for Scientific Computing (SYNASC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SYNASC.2018.00051","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
摘要
在不断变化的恶意软件环境中,支持VBA (Visual Basic for applications)脚本的办公应用程序已经成为难题的重要组成部分,特别是因为它们是针对新威胁的最有效的基于电子邮件的传递方法之一。本文介绍了对大约200个这样的网络攻击的研究,强调使用的社会工程技术,应用的混淆方法和开发后行为。
An Overview of Obfuscation Techniques used by Malware in Visual Basic for Application Scripts
In the ever changing malware landscape, office applications with support for VBA (Visual Basic for Applications) scripts have become an important piece of the puzzle, especially since they are one of the most effective email-based delivery method for new threats. This paper presents the research on approximatively 200 such cyber-attacks emphasizing social engineering techniques used, obfuscation methods applied and post-exploitation behavior.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
