Open in new window

Title (eng)

Screenshot of KAMAS with a cluster of 17 malware samples

Author

Markus Wagner

Alexander Rind

Niklas Thür

Wolfgang Aigner

Description (eng)

KAMAS is a knowledge-assisted visualization system for behavior-based malware analysis. It supports malware analysts with visual analytics and knowledge externalization methods for the analysis process. In this screen KAMAS is used to explore 195 rules extracted from a cluster of 17 malware sample (8x Bagle (Worm), 2x Bifrost (Trojan), 1x Brontok (Virus), 1x IRCBot (Bot), 5x Prorat (Trojan)).

Object languages

English

Date

2017

Rights

Creative Commons License
This work is licensed under a
CC BY 3.0 AT - Creative Commons Attribution 3.0 Austria License.

CC BY 3.0 AT

http://creativecommons.org/licenses/by/3.0/at/

Classification

malicious software; malware analysis; behavior-based; prototype; visualization; visual analytics; interactive; knowledge generation; design study

Member of the Collection(s) (1)

o:1264 A knowledge-assisted visual malware analysis system: Design, validation and reflection of KAMAS