原文传递
Detecting Ransomware Through Power Analysis.
| 题名: | Detecting Ransomware Through Power Analysis. |
| 作者: | Melton, J. D. |
| 关键词: | Supervised machine learning, Cryptography, Feature extraction, Operating systems, Cybersecurity, Signal processing, Central processing units, Field programmable gate arrays, Cyberattacks, Algorithms, Solid-state drive, Power analysis, Ransomware, Encryption |
| 摘要: | Cyber criminals are increasingly using malicious programs to take control of and exploit individuals, businesses, and governments data. A large portion of malware is a type called ransomware, which finds away to restrict the infected users access to data until a payment is obtained. Current detection solutions include programs that analyze file system changes and registry events, employ honeypot techniques, and identify anomalies in network patterns. This research presents an algorithm developed to detect ransom ware by analyzing a computers power consumption. Specifically, the algorithm identifies features of the computers power consumption that are indicative of encryption operations. We can successfully identify encryption of files with sizes of 500MB and greater with a high degree of success. By applying our encryption detection algorithm to the Cryptographic Ransomware, we are able to successfully identify the execution of WannaCry Ransomware samples. |
| 报告类型: | 科技报告 |
相关文献
- Detecting Mode Confusion Through Formal Modeling and Analysis
- Hands On Cybersecurity Studies: Multi Perspective Analysis Of The WannaCry Ransomware.
- IDARC-BRIDGE: A Computational Platform for Seismic Damage Assessment of Bridge Structures
- Development of Relationship between Truck Accidents and Geometric Design. Phase 1; Final rept. 1990.10-Jan 93
- Vessel Calls at U.S. Ports, 2004.
- U.S. Domestic Ocean Trades, 2003.
检索历史
应用推荐
