Rakesh Kumar Sehgal, D S Bhilare and Saurabh Chamotra. Article: An Integrated Framework for Malware Collection and Analysis for Botnet Tracking. IJCA Special Issue on Communication Security comnetcs(1):50-55, March 2012. Full text available. BibTeX
@article{key:article, author = {Rakesh Kumar Sehgal and D. S. Bhilare and Saurabh Chamotra}, title = {Article: An Integrated Framework for Malware Collection and Analysis for Botnet Tracking}, journal = {IJCA Special Issue on Communication Security}, year = {2012}, volume = {comnetcs}, number = {1}, pages = {50-55}, month = {March}, note = {Full text available} }
The paper presents the design of an integrated malware collection and analysis framework for botnet tracking. In proposed framework we have used Honypots as malware capturing tool. The proposed system design is unique in the sense that the information regarding the configuration of honeypot on which malware sample has been captured is saved with malware sample in the malware data-base. This system configuration information saved with the malware sample is used at the time of dynamic malware analysis for creating malware execution environment. As an execution environment thus created is analogous to environment in which malware was captured therefore it generates true expected execution behavior leading to capturing of accurate execution traces. Further we have demonstrated the effectiveness of the proposed solution with the help of a prototype system.