Ransomware anti-analysis and evasion techniques: a survey and research directions
Ransomware has been proven to constitute a severe threat to the world's digital assets. Resources or devices' recovery from a Crypto-Ransomware infection is practically infeasible unless an error in the malicious cryptographic implementation has been made, as robust encryption is irreversi...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Conference or Workshop Item |
| Language: | English |
| Published: |
2021
|
| Subjects: | |
| Online Access: | http://eprints.utm.my/id/eprint/96020/1/MohammadNOlaimat2021_RansomwareAntiAnalysisandEvasion.pdf http://eprints.utm.my/id/eprint/96020/ http://dx.doi.org/10.1109/CRC50527.2021.9392529 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| id |
my.utm.96020 |
|---|---|
| record_format |
eprints |
| spelling |
my.utm.960202022-07-01T08:37:20Z http://eprints.utm.my/id/eprint/96020/ Ransomware anti-analysis and evasion techniques: a survey and research directions Olaimat, M. N. Maarof, M. A. Al-rimy, B. A. S. QA75 Electronic computers. Computer science Ransomware has been proven to constitute a severe threat to the world's digital assets. Resources or devices' recovery from a Crypto-Ransomware infection is practically infeasible unless an error in the malicious cryptographic implementation has been made, as robust encryption is irreversible. This paper attempts to justify as to why designing and deploying an effective and efficient detective solution against this particular malware category represents a formidable technical challenge. The paper starts with a recent presentation of the Ransomware's epidemic, as reported by the security industry. Subsequently, a taxonomy of Ransomware is presented. The anatomy of the malware's invariant intrusions and infection vectors are illustrated. In addition, the paper navigates and analyzes the various anti-analysis and evasive techniques that are deployable by Ransomware. In every context enumerated in the narrative, the technical difficulty being posed by this malware is illuminated. If a computer security researcher intends to devise a Crypto-Ransomware's preventive solution or a predictive or proactive one, then it is imperative to have a sound perception of the technical challenges that will manifest prior to launching the proposed research project - so as to be equipped to tackle the anticipated problems. This paper concludes with an advance notice underscoring the resilience of Ransomware intrusions and highlighting research open-problems. 2021 Conference or Workshop Item PeerReviewed application/pdf en http://eprints.utm.my/id/eprint/96020/1/MohammadNOlaimat2021_RansomwareAntiAnalysisandEvasion.pdf Olaimat, M. N. and Maarof, M. A. and Al-rimy, B. A. S. (2021) Ransomware anti-analysis and evasion techniques: a survey and research directions. In: 3rd International Cyber Resilience Conference, CRC 2021, 29 January 2021 - 31 January 2021, Virtual, Langkawi Island. http://dx.doi.org/10.1109/CRC50527.2021.9392529 |
| institution |
Universiti Teknologi Malaysia |
| building |
UTM Library |
| collection |
Institutional Repository |
| continent |
Asia |
| country |
Malaysia |
| content_provider |
Universiti Teknologi Malaysia |
| content_source |
UTM Institutional Repository |
| url_provider |
http://eprints.utm.my/ |
| language |
English |
| topic |
QA75 Electronic computers. Computer science |
| spellingShingle |
QA75 Electronic computers. Computer science Olaimat, M. N. Maarof, M. A. Al-rimy, B. A. S. Ransomware anti-analysis and evasion techniques: a survey and research directions |
| description |
Ransomware has been proven to constitute a severe threat to the world's digital assets. Resources or devices' recovery from a Crypto-Ransomware infection is practically infeasible unless an error in the malicious cryptographic implementation has been made, as robust encryption is irreversible. This paper attempts to justify as to why designing and deploying an effective and efficient detective solution against this particular malware category represents a formidable technical challenge. The paper starts with a recent presentation of the Ransomware's epidemic, as reported by the security industry. Subsequently, a taxonomy of Ransomware is presented. The anatomy of the malware's invariant intrusions and infection vectors are illustrated. In addition, the paper navigates and analyzes the various anti-analysis and evasive techniques that are deployable by Ransomware. In every context enumerated in the narrative, the technical difficulty being posed by this malware is illuminated. If a computer security researcher intends to devise a Crypto-Ransomware's preventive solution or a predictive or proactive one, then it is imperative to have a sound perception of the technical challenges that will manifest prior to launching the proposed research project - so as to be equipped to tackle the anticipated problems. This paper concludes with an advance notice underscoring the resilience of Ransomware intrusions and highlighting research open-problems. |
| format |
Conference or Workshop Item |
| author |
Olaimat, M. N. Maarof, M. A. Al-rimy, B. A. S. |
| author_facet |
Olaimat, M. N. Maarof, M. A. Al-rimy, B. A. S. |
| author_sort |
Olaimat, M. N. |
| title |
Ransomware anti-analysis and evasion techniques: a survey and research directions |
| title_short |
Ransomware anti-analysis and evasion techniques: a survey and research directions |
| title_full |
Ransomware anti-analysis and evasion techniques: a survey and research directions |
| title_fullStr |
Ransomware anti-analysis and evasion techniques: a survey and research directions |
| title_full_unstemmed |
Ransomware anti-analysis and evasion techniques: a survey and research directions |
| title_sort |
ransomware anti-analysis and evasion techniques: a survey and research directions |
| publishDate |
2021 |
| url |
http://eprints.utm.my/id/eprint/96020/1/MohammadNOlaimat2021_RansomwareAntiAnalysisandEvasion.pdf http://eprints.utm.my/id/eprint/96020/ http://dx.doi.org/10.1109/CRC50527.2021.9392529 |
| _version_ |
1738510313063448576 |
| score |
13.211869 |