Design and implementation of a dynamic malware analysis environment

OData support
Dr. Buttyán Levente
Department of Networked Systems and Services

Nowadays, information technology is widespread, IT devices are all around us. Information technology and communication are important parts of our lives. We use computers and software not only in our private lives and for entertainment, but for maintaining important services and easing our work, too. Information technology is present in medicine, warfare, transportation and many other places. In computers, for different tasks we use different software, but with the increasing use of IT, malicious software (so-called malware) appeared.

Goals and methods of malware differ. To defend against them, there is need for the analysis of their behaviour. While there is too little manpower in proportion to the vast amount of malicious software, solutions to ease or partially automate malware analysis do also exist.

Malware analysis can be divided into two categories, static and dynamic. There is a significant difference between them. While in the case of dynamic analysis, malicious software gets executed in favour of observing and analysing its behaviour, in the case of static analysis, it does not.

The topic of this thesis is the assessment of the abilities of already existing solutions to aid dynamic analysis, and the designing and implementing of an extendable, easily and efficiently usable analysis framework.


Please sign in to download the files of this thesis.