An Empirical Analysis of Crypto-Ransomware Behavior

Kaur, Jasmeen; Jaafar, Fehmi; Zavarsky, Pavol

Home // ICONS 2018, The Thirteenth International Conference on Systems // View article

An Empirical Analysis of Crypto-Ransomware Behavior

Authors:
Jasmeen Kaur
Fehmi Jaafar
Pavol Zavarsky

Keywords: Crypto-ransomware; Malware; Windows Operating System; Security Vulnerability; Execution flow.

Abstract:
Crypto-ransomware is a common type of malware that exploits software vulnerabilities of Internet accessible servers, end-user computers, and mobile devices. In this paper, the behavior of crypto-ransomware is empirically analyzed. We performed dynamic analysis of the ransomware in a virtual environment and the behavior of the malware represented using the data flow modeling approach. Modification of registry values and system call functions by the malware were within the scope of the analysis. The outcome of the empirical study provides a number of indicators that can be considered when assessing the effectiveness of solutions designed to prevent and detect crypto-ransomware.

Pages: 1 to 6

Copyright: Copyright (c) IARIA, 2018

Publication date: April 22, 2018

Published in: conference

ISSN: 2308-4243

ISBN: 978-1-61208-626-2

Location: Athens, Greece

Dates: from April 22, 2018 to April 26, 2018