Analysis of Malware Network Activity

Berger-Sabbatel, Gilles; Duda, Andrzej

doi:10.1007/978-3-642-21512-4_25

Gilles Berger-Sabbatel³ &
Andrzej Duda³

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 149))

Included in the following conference series:

International Conference on Multimedia Communications, Services and Security

962 Accesses
4 Citations

Abstract

A botnet is a network of zombie computers compromised by some malware (virus, worm). Botnets are coordinated by a botmaster through a command and control channel (C&C) to which the malware connects to get instructions. A botmaster can use botnets to perform malicious activities. In this paper, we report on the development of a platform for analyzing malware and botnets.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Abu Rajab, M., Zarfoss, J., Monrose, F., Terzis, A.: A multifaceted approach to understanding the botnet phenomenon. In: IMC 2006: Proceedings of the 6th ACM SIGCOMM Conference on Internet Measurement, pp. 41–52. ACM, New York (2006)
Google Scholar
Alata, E., Alberdi, I., Nicomette, V., Owezarski, P., Kaaniche, M.: Internet attacks monitoring with dynamic connection redirection mechanisms. Journal on Internet Computer Virology 7(2) (2008)
Google Scholar
Anirudh Ramachandran, D.D., Feamster, N.: Revealing botnet membership using dnsbl counter-intelligence. In: U. Association, editor SRUTI 2006: 2nd Workshop on Steps to Reducing Unwanted Traffic on the Internet, pp. 49–54 (2006)
Google Scholar
Berger-Sabbatel, G., Korczyński, M., Duda, A.: Architecture of a Platform for Malware Analysis and Confinement. In: Proc. MCSS 2010: Multimedia Communications, Services and Security, Cracow (2010)
Google Scholar
Kumar, A., Paxson, V., Weaver, N.: Exploiting underlying structure for detailed reconstruction of an internet-scale event. In: PROC. ACM IMC (2005)
Google Scholar
Trinius, P., Willems, C., Holz, T., Rieck, K.: A malware instruction set for behavior-based analysis. Technical Report 2009-007, University of Mannheim (December 2009)
Google Scholar

Download references

Author information

Authors and Affiliations

CNRS Grenoble Informatics Laboratory UMR 5217, Grenoble Institute of Technology, 681, rue de la Passerelle, BP 72, 38402, Saint Martin d’Hères Cedex, France
Gilles Berger-Sabbatel & Andrzej Duda

Authors

Gilles Berger-Sabbatel
View author publications
You can also search for this author in PubMed Google Scholar
Andrzej Duda
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Department of Telecommunications, AGH University of Science and Technology, al. Mickiewicza 30, 30-059, Krakow, Poland
Andrzej Dziech
Multimedia Systems Department, Gdansk University of Technology, Narutowicza 11/22, 80-233, Gdansk, Poland
Andrzej Czyżewski

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Berger-Sabbatel, G., Duda, A. (2011). Analysis of Malware Network Activity. In: Dziech, A., Czyżewski, A. (eds) Multimedia Communications, Services and Security. MCSS 2011. Communications in Computer and Information Science, vol 149. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-21512-4_25

Download citation

DOI: https://doi.org/10.1007/978-3-642-21512-4_25
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-21511-7
Online ISBN: 978-3-642-21512-4
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics