Issue No. 02 - March/April (2007 vol. 5)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2007.45
Thorsten Holz , University of Mannheim, Germany
Felix Freiling , University of Mannheim, Germany
Carsten Willems , University of Mannheim, Germany
The authors describe the design and implementation of CWSandbox, a malware analysis tool that fulfills their three design criteria of automation, effectiveness, and correctness for the Win32 family of operating systems.
malware analysis and detection, security, CWSandbox, API hooking, DLL injection, attacks
Thorsten Holz, Felix Freiling, Carsten Willems, "Toward Automated Dynamic Malware Analysis Using CWSandbox", IEEE Security & Privacy, vol. 5, no. , pp. 32-39, March/April 2007, doi:10.1109/MSP.2007.45