Malware Removal Tools Using Indicators Of Compromise (IOCs)

• Main Author: Shahrin, Abdullah Azam
• Format: Thesis
• Language: English
• Published: 2017
• Subjects: Q Science (General); QA Mathematics
• Online Access: http://eprints.utem.edu.my/id/eprint/20939/; https://plh.utem.edu.my/cgi-bin/koha/opac-detail.pl?biblionumber=106078

Nowdays,Malware has become a big disease in a computer science field.Each and every day Malware kept on increasing rapidly.Even with the current removal tools like Kaspersky,Norton,Avast,McAfee and many more,there is still some malware that does not removed.Instead of spending a lot of money and time for the current removal tools,thus this project proposed the Mal ware Removal Tools using Indicators of Compromise (IOCs).For maJware detection tecnique,it uses a signature-based detection because it can be written according to the tested environment itself.Also a standalone sandbox will be used to analyze the behavior of malicious at a local environment.It use static analysis for sandbox techniques where it will filter the binaries according to malicious pattern which called a signature.After that,OpenIOC took place to select the signature for the development of the malware removal tools.The reason of using OpenIOC is because it written in XML where it will be easier to customize and extend the coding.This system is a new removal system where it developed by using several techniques for detecting by refering to the existing removal software.