An Overview of Obfuscation Techniques used by Malware in Visual Basic for Application Scripts

2018 20th International Symposium on Symbolic and Numeric Algorithms for Scientific Computing (SYNASC) Pub Date : 2018-09-01 DOI:10.1109/SYNASC.2018.00051

Marilena Lupascu, Dragos Gavrilut, D. Lucanu

引用次数: 0

Abstract

In the ever changing malware landscape, office applications with support for VBA (Visual Basic for Applications) scripts have become an important piece of the puzzle, especially since they are one of the most effective email-based delivery method for new threats. This paper presents the research on approximatively 200 such cyber-attacks emphasizing social engineering techniques used, obfuscation methods applied and post-exploitation behavior.

查看原文本刊更多论文

Visual Basic中用于应用程序脚本的恶意软件混淆技术概述

在不断变化的恶意软件环境中，支持VBA (Visual Basic for applications)脚本的办公应用程序已经成为难题的重要组成部分，特别是因为它们是针对新威胁的最有效的基于电子邮件的传递方法之一。本文介绍了对大约200个这样的网络攻击的研究，强调使用的社会工程技术，应用的混淆方法和开发后行为。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2018 20th International Symposium on Symbolic and Numeric Algorithms for Scientific Computing (SYNASC)

自引率

0.00%

发文量