Screenshot of KAMAS with a cluster of 17 malware samples
KAMAS is a knowledge-assisted visualization system for behavior-based malware analysis. It supports malware analysts with visual analytics and knowledge externalization methods for the analysis process. In this screen KAMAS is used to explore 195 rules extracted from a cluster of 17 malware sample (8x Bagle (Worm), 2x Bifrost (Trojan), 1x Brontok (Virus), 1x IRCBot (Bot), 5x Prorat (Trojan)).
This work is licensed under a
CC BY 3.0 AT - Creative Commons Attribution 3.0 Austria License.
CC BY 3.0 AT
malicious software; malware analysis; behavior-based; prototype; visualization; visual analytics; interactive; knowledge generation; design study
|o:1264||A knowledge-assisted visual malware analysis system: Design, validation and reflection of KAMAS|