Detection of encrypted executable files based on entropy analysis to determine the randomness measure of byte sequences


Cite item

Full Text

Open Access Open Access
Restricted Access Access granted
Restricted Access Subscription Access

Abstract

A method has been proposed for identifying malicious programs that use encryption as a disguise. In this paper, a modification of the statistical spectral test based on entropy analysis has been described.

About the authors

I. V. Alekseev

Peter the Great St. Petersburg Polytechnic University

Author for correspondence.
Email: ialexeev@ibks.spbstu.ru
Russian Federation, St. Petersburg

V. V. Platonov

Peter the Great St. Petersburg Polytechnic University

Email: ialexeev@ibks.spbstu.ru
Russian Federation, St. Petersburg

Supplementary files

Supplementary Files
Action
1. JATS XML

Copyright (c) 2017 Allerton Press, Inc.