Please use this identifier to cite or link to this item:
Title: Seguridad en redes y aplicaciones distribuidas: programas maliciosos, antivirus y uso de emuladores de CPU en técnicas de análisis de malware
Author: Herrero Álvarez, Rafael
Tutor: Elbaz Sanz, Angel
Keywords: computer security
Issue Date: 31-Dec-2018
Publisher: Universitat Oberta de Catalunya (UOC)
Abstract: Malware is something that have been present from the very beginning of computing. Every day thousands of new cases are detected, which affects users all over the world. Because of this, it is necessary to stop them. These methods are evolving while malware does it. To achieve our goal, perform a malware analysis using emulators, the first thing we will see in this work is the history about malware, how they are nowadays and how they will be in the future. With this, we introduce the antivirus, as they are today and what are the techniques used to protect us, studying if they are effective or not. One of the objectives that we try to achieve is to study a new way of analysing malware, using the technique of behaviour analysis. This is not a new technology, but it can be very useful if we add emulators to it. An emulator allows us to execute programs or code on a platform other than the one that was originally designed or on the same platform, in such a way that it returns the result of all the instructions executed by the CPU for that program. In this work we will emulate x86 architecture programs over the same architecture, analysing what is the result of these executions. We will work with errors like invalid memory accesses, infinite loops (and how we detect them), and also, shellcodes, assembly language codes that are injected into the execution of a program in order for the processor to perform those operations. After this, we will determine if this type of tool is useful or not and how it could be used in the future.
Language: Spanish
Appears in Collections:Trabajos finales de carrera, trabajos de investigación, etc.

Files in This Item:
File Description SizeFormat 
rafaherreroTFM1218memoria.pdfMemoria del TFM1,22 MBAdobe PDFThumbnail