Paper Abstract and Keywords |
Presentation |
2022-03-08 13:20
Analyzing network status of IoT malware by dynamic analysis with bare-metal device Kota Ogawa, Rui Tanabe, Katsunari Yoshioka, Tsutomu Matsumoto (YNU) ICSS2021-74 |
Abstract |
(in Japanese) |
(See Japanese page) |
(in English) |
In this study, we first investigate the network state changes caused by IoT malware infection by executing malware samples, collected by IoT honeypots, in a virtual machine. As a result, we found that about 33% of the samples change the network state of infected devices and there are many patterns in the changes of the network state. Next, based on the results of the dynamic analysis in the virtual environment, we extracted samples that made unique changes in the network state and conducted the dynamic analysis using bare-metal IoT devices. As a result of the analysis, we found that changes in the network state were also observed in the actual devices, which can be confirmed by external port scanning. The change of the port listening state in the virtual environment did not always match that in the actual device. Finally, we discuss the possibility of remotely detecting infected devices by checking their port listening status. |
Keyword |
(in Japanese) |
(See Japanese page) |
(in English) |
IoT Malware / Dynamic analysis / / / / / / |
Reference Info. |
IEICE Tech. Rep., vol. 121, no. 410, ICSS2021-74, pp. 93-98, March 2022. |
Paper # |
ICSS2021-74 |
Date of Issue |
2022-02-28 (ICSS) |
ISSN |
Online edition: ISSN 2432-6380 |
Copyright and reproduction |
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034) |
Download PDF |
ICSS2021-74 |
Conference Information |
Committee |
ICSS IPSJ-SPT |
Conference Date |
2022-03-07 - 2022-03-08 |
Place (in Japanese) |
(See Japanese page) |
Place (in English) |
Online |
Topics (in Japanese) |
(See Japanese page) |
Topics (in English) |
Security, Trust, etc. |
Paper Information |
Registration To |
ICSS |
Conference Code |
2022-03-ICSS-SPT |
Language |
Japanese |
Title (in Japanese) |
(See Japanese page) |
Sub Title (in Japanese) |
(See Japanese page) |
Title (in English) |
Analyzing network status of IoT malware by dynamic analysis with bare-metal device |
Sub Title (in English) |
|
Keyword(1) |
IoT Malware |
Keyword(2) |
Dynamic analysis |
Keyword(3) |
|
Keyword(4) |
|
Keyword(5) |
|
Keyword(6) |
|
Keyword(7) |
|
Keyword(8) |
|
1st Author's Name |
Kota Ogawa |
1st Author's Affiliation |
Yokohama National University (YNU) |
2nd Author's Name |
Rui Tanabe |
2nd Author's Affiliation |
Yokohama National University (YNU) |
3rd Author's Name |
Katsunari Yoshioka |
3rd Author's Affiliation |
Yokohama National University (YNU) |
4th Author's Name |
Tsutomu Matsumoto |
4th Author's Affiliation |
Yokohama National University (YNU) |
5th Author's Name |
|
5th Author's Affiliation |
() |
6th Author's Name |
|
6th Author's Affiliation |
() |
7th Author's Name |
|
7th Author's Affiliation |
() |
8th Author's Name |
|
8th Author's Affiliation |
() |
9th Author's Name |
|
9th Author's Affiliation |
() |
10th Author's Name |
|
10th Author's Affiliation |
() |
11th Author's Name |
|
11th Author's Affiliation |
() |
12th Author's Name |
|
12th Author's Affiliation |
() |
13th Author's Name |
|
13th Author's Affiliation |
() |
14th Author's Name |
|
14th Author's Affiliation |
() |
15th Author's Name |
|
15th Author's Affiliation |
() |
16th Author's Name |
|
16th Author's Affiliation |
() |
17th Author's Name |
|
17th Author's Affiliation |
() |
18th Author's Name |
|
18th Author's Affiliation |
() |
19th Author's Name |
|
19th Author's Affiliation |
() |
20th Author's Name |
|
20th Author's Affiliation |
() |
Speaker |
Author-1 |
Date Time |
2022-03-08 13:20:00 |
Presentation Time |
20 minutes |
Registration for |
ICSS |
Paper # |
ICSS2021-74 |
Volume (vol) |
vol.121 |
Number (no) |
no.410 |
Page |
pp.93-98 |
#Pages |
6 |
Date of Issue |
2022-02-28 (ICSS) |
|