| Presentation | 2015-03-04 Finding Network Address Blocks Intensively Used for Cyber Attacks Takuya TSUTSUMI, Syuta MORISHIMA, Shogo SUZUKI, Kenichi SHIBAHARA, Katsunari YOSHIOKA, Tsutomu MATSUMOTO, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | Recently, cyber attacks have diversified on Internet, so immediate actions are required for them. In this report, we point the existence of IP address blocks that simultaneously play various roles in cyber attacks, such as network scanning, remote exploits, malware hosting, and their command and control. We then propose a method to identify such address blocks using multiple information sources including passive monitoring by honeypot, sandbox analysis of malware samples, and utilizing the database of integrated malware scanning service, namely VirusTotal. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Cyber Attacks / Honeypots / Sandbox Analysis / Active Scan / Integrated Malware Scanning Services |
| Paper # | ICSS2014-83 |
| Date of Issue |
| Conference Information | |
| Committee | ICSS |
|---|---|
| Conference Date | 2015/2/24(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Information and Communication System Security (ICSS) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Finding Network Address Blocks Intensively Used for Cyber Attacks |
| Sub Title (in English) | |
| Keyword(1) | Cyber Attacks |
| Keyword(2) | Honeypots |
| Keyword(3) | Sandbox Analysis |
| Keyword(4) | Active Scan |
| Keyword(5) | Integrated Malware Scanning Services |
| 1st Author's Name | Takuya TSUTSUMI |
| 1st Author's Affiliation | Yokohama National University() |
| 2nd Author's Name | Syuta MORISHIMA |
| 2nd Author's Affiliation | Yokohama National University |
| 3rd Author's Name | Shogo SUZUKI |
| 3rd Author's Affiliation | Yokohama National University |
| 4th Author's Name | Kenichi SHIBAHARA |
| 4th Author's Affiliation | Yokohama National University |
| 5th Author's Name | Katsunari YOSHIOKA |
| 5th Author's Affiliation | Yokohama National University |
| 6th Author's Name | Tsutomu MATSUMOTO |
| 6th Author's Affiliation | Yokohama National University |
| Date | 2015-03-04 |
| Paper # | ICSS2014-83 |
| Volume (vol) | vol.114 |
| Number (no) | 489 |
| Page | pp.pp.- |
| #Pages | 6 |
| Date of Issue | |