Detecting Malicious Code by Binary File Checking

Marius POPA

doi:10.12948/issn14531305/18.1.2014.10

Informatică economică (Jan 2014)

Detecting Malicious Code by Binary File Checking

Marius POPA

Affiliations

Marius POPA

DOI: https://doi.org/10.12948/issn14531305/18.1.2014.10
Journal volume & issue: Vol. 18, no. 1
pp. 111 – 119

Abstract

Read online

The object, library and executable code is stored in binary files. Functionality of a binary file is altered when its content or program source code is changed, causing undesired effects. A direct content change is possible when the intruder knows the structural information of the binary file. The paper describes the structural properties of the binary object files, how the content can be controlled by a possible intruder and what the ways to identify malicious code in such kind of files. Because the object files are inputs in linking processes, early detection of the malicious content is crucial to avoid infection of the binary executable files.

Published in Informatică economică

ISSN: 1453-1305 (Print); 1842-8088 (Online)
Publisher: Inforec Association
Country of publisher: Romania
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Electronics: Computer engineering. Computer hardware; Bibliography. Library science. Information resources
Website: http://revistaie.ase.ro

About the journal

Abstract

Keywords