Malware constitutes a major global risk affecting millions of users each year. Standard algorithms in detection systems perform insufficiently when dealing with malware passed through obfuscation tools. We illustrate this studying in detail an open source metamorphic software, making use of a hybrid framework to obtain the relevant features from binaries. We then provide an improved alternative solution based on adversarial risk analysis which we illustrate describe with an example.
@article{arxiv.1911.03653,
title = {Protecting from Malware Obfuscation Attacks through Adversarial Risk Analysis},
author = {Alberto Redondo and David Rios Insua},
journal= {arXiv preprint arXiv:1911.03653},
year = {2019}
}