Open in new window

Title (eng)

Screenshot of KAMAS with a cluster of 17 malware samples


Markus Wagner

Alexander Rind

Niklas Thür

Wolfgang Aigner

Description (eng)

KAMAS is a knowledge-assisted visualization system for behavior-based malware analysis. It supports malware analysts with visual analytics and knowledge externalization methods for the analysis process. In this screen KAMAS is used to explore 195 rules extracted from a cluster of 17 malware sample (8x Bagle (Worm), 2x Bifrost (Trojan), 1x Brontok (Virus), 1x IRCBot (Bot), 5x Prorat (Trojan)).

Object languages





Creative Commons License
This work is licensed under a
CC BY 3.0 AT - Creative Commons Attribution 3.0 Austria License.

CC BY 3.0 AT


malicious software; malware analysis; behavior-based; prototype; visualization; visual analytics; interactive; knowledge generation; design study

Member of the Collection(s) (1)

o:1264 A knowledge-assisted visual malware analysis system: Design, validation and reflection of KAMAS