Static Malware Smtp Fail Analysis Shmoo Con 2016
Explore a base level problem in static malware analysis, that we have too many samples to analyze, by leveraging the parallelization of GPGPUs an advantage is gained by moving the problem into the visual plane and solving similarity by texture analysis in parallel. Ive clustered a few hundred million PEs by organizing them by how the look. Debugging is accompanied by making movies of the visualization. The real utility of the art is speed. A malware sample can be analyzed on an average of 33 milliseco br, br,
|
|