IEICE Technical Committee Submission System
Conference Paper's Information
Online Proceedings
[Sign in]
Tech. Rep. Archives
 Go Top Page Go Previous   [Japanese] / [English] 

Paper Abstract and Keywords
Presentation 2017-06-08 14:25
A First Trend Review of Runtime Packers for IoT Malware
Ryoichi Isawa (NICT), Ying Tie (YNU), Katsunari Yoshioka (YNU/NICT), Tao Ban, Daisuke Inoue (NICT) IA2017-4 ICSS2017-4
Abstract (in Japanese) (See Japanese page) 
(in English) Malicious software (malware) specimens that infect IoT (Internet of Things) devices rapidly increase. If those specimens are packed (compressed and/or encrypted), an analyst should require an analysis method suitable for packed IoT malware. To realize how important analysts are seriously in alarm for packed malware, we conducted a trend review of runtime packers for IoT malware. In this review, we examined 16,402 IoT malware specimens with an entropy analysis to reveal a ratio of packed malware. In addition, we checked how many packers were used for the malware. This trend review shows that 238 specimens out of 16,402 were packed and that five packers were used including UPX. We concludes that analysts currently do not have to be extremely nervous for packed IoT malware.
Keyword (in Japanese) (See Japanese page) 
(in English) Internet of Things / Malware analysis / Obfuscation / Packer / ELF format / / /  
Reference Info. IEICE Tech. Rep., vol. 117, no. 79, ICSS2017-4, pp. 19-24, June 2017.
Paper # ICSS2017-4 
Date of Issue 2017-06-01 (IA, ICSS) 
ISSN Print edition: ISSN 0913-5685    Online edition: ISSN 2432-6380
Copyright
and
reproduction
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034)
Download PDF IA2017-4 ICSS2017-4

Conference Information
Committee IA ICSS  
Conference Date 2017-06-08 - 2017-06-09 
Place (in Japanese) (See Japanese page) 
Place (in English) Kochi University of Technolo, Eikokuji Campus 
Topics (in Japanese) (See Japanese page) 
Topics (in English) Internet Security, etc. 
Paper Information
Registration To ICSS 
Conference Code 2017-06-IA-ICSS 
Language Japanese 
Title (in Japanese) (See Japanese page) 
Sub Title (in Japanese) (See Japanese page) 
Title (in English) A First Trend Review of Runtime Packers for IoT Malware 
Sub Title (in English)  
Keyword(1) Internet of Things  
Keyword(2) Malware analysis  
Keyword(3) Obfuscation  
Keyword(4) Packer  
Keyword(5) ELF format  
Keyword(6)  
Keyword(7)  
Keyword(8)  
1st Author's Name Ryoichi Isawa  
1st Author's Affiliation National Institute of Information and Communications Technology (NICT)
2nd Author's Name Ying Tie  
2nd Author's Affiliation Yokohama National University (YNU)
3rd Author's Name Katsunari Yoshioka  
3rd Author's Affiliation Yokohama National University/National Institute of Information and Communications Technology (YNU/NICT)
4th Author's Name Tao Ban  
4th Author's Affiliation National Institute of Information and Communications Technology (NICT)
5th Author's Name Daisuke Inoue  
5th Author's Affiliation National Institute of Information and Communications Technology (NICT)
6th Author's Name  
6th Author's Affiliation ()
7th Author's Name  
7th Author's Affiliation ()
8th Author's Name  
8th Author's Affiliation ()
9th Author's Name  
9th Author's Affiliation ()
10th Author's Name  
10th Author's Affiliation ()
11th Author's Name  
11th Author's Affiliation ()
12th Author's Name  
12th Author's Affiliation ()
13th Author's Name  
13th Author's Affiliation ()
14th Author's Name  
14th Author's Affiliation ()
15th Author's Name  
15th Author's Affiliation ()
16th Author's Name  
16th Author's Affiliation ()
17th Author's Name  
17th Author's Affiliation ()
18th Author's Name  
18th Author's Affiliation ()
19th Author's Name  
19th Author's Affiliation ()
20th Author's Name  
20th Author's Affiliation ()
Speaker Author-1 
Date Time 2017-06-08 14:25:00 
Presentation Time 25 minutes 
Registration for ICSS 
Paper # IA2017-4, ICSS2017-4 
Volume (vol) vol.117 
Number (no) no.78(IA), no.79(ICSS) 
Page pp.19-24 
#Pages
Date of Issue 2017-06-01 (IA, ICSS) 


[Return to Top Page]

[Return to IEICE Web Page]


The Institute of Electronics, Information and Communication Engineers (IEICE), Japan