Algorithms for grouping similar samples in malware analysis

2008-05-01

Víctor M. Álvarez

PandaLabs, Spain

Editor: Helen Martin

Abstract

Malware researchers are frequently faced with huge collections of files that must be analysed to determine whether or not they are malware. In such situations, grouping the files according to their binary similarity can save time and effort. Víctor Álvarez discusses the algorithms that can be used to make the life of the malware researcher easier.

The full article is available to registered users. Click here for free registration or, if you already are a registered user, login to access the full article.

Magazine


	May 2008 PDF Please register to download the PDF Comment Online banking call to arms News Malware gets terms of use Grand theft personal information Malware prevalence report March 2008 Features Algorithms for grouping similar samples in malware analysis Metamorphic authorship recognition using Markov models Opinion Blended malware defence Product review eEye Digital Security Blink Professional 4.0 Calendar Anti-malware industry events Spam Bulletin New home for The Spammers’ Compendium Delivering reliable protection against phishing websites See also Virus Bulletin archives How to become a subscriber Reprints

Quick Links

Poll

The Japanese government is reported to have commissioned a 'defensive virus'. Is 'defensive' malware ever a good idea?
Leave a comment
View 11 comments

VB100 certification


	This month's VB100 test saw some major changes and a radical overhaul of the VB100 test methodology - for the first time allowing products to use their 'cloud' look-up systems. John Hawes has all the details. See full results.

Virus Bulletin currently has 224,243 registered users.

Fighting malware and spam

Algorithms for grouping similar samples in malware analysis

Víctor M. Álvarez

PDF

Comment

News

Malware prevalence report

Features

Opinion

Product review

Calendar

Spam Bulletin

See also