Issue No. 02 - March/April (2007 vol. 5)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2007.45
Carsten Willems , University of Mannheim, Germany
Thorsten Holz , University of Mannheim, Germany
Felix Freiling , University of Mannheim, Germany
The authors describe the design and implementation of CWSandbox, a malware analysis tool that fulfills their three design criteria of automation, effectiveness, and correctness for the Win32 family of operating systems.
malware analysis and detection, security, CWSandbox, API hooking, DLL injection, attacks
Carsten Willems, Thorsten Holz, Felix Freiling, "Toward Automated Dynamic Malware Analysis Using CWSandbox", IEEE Security & Privacy, vol. 5, no. , pp. 32-39, March/April 2007, doi:10.1109/MSP.2007.45