Issue No. 02 - March/April (2007 vol. 5)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2007.45
Carsten Willems , University of Mannheim, Germany
Thorsten Holz , University of Mannheim, Germany
Felix Freiling , University of Mannheim, Germany
The authors describe the design and implementation of CWSandbox, a malware analysis tool that fulfills their three design criteria of automation, effectiveness, and correctness for the Win32 family of operating systems.
malware analysis and detection, security, CWSandbox, API hooking, DLL injection, attacks
T. Holz, F. Freiling and C. Willems, "Toward Automated Dynamic Malware Analysis Using CWSandbox," in IEEE Security & Privacy, vol. 5, no. , pp. 32-39, 2007.