Evasion and Detection of Metamorphic Viruses

Rana, Yashveer (2012) Evasion and Detection of Metamorphic Viruses. BTech thesis.



Metamorphic viruses mutate their own code to produce viral copies which are syntactically different from their parents, but functionally equivalent. The viral copies thus produced, may have different signatures, rendering signature-based virus scanners unreliable. New age anti-virus products employ a combination of signature scanning and heuristic techniques to defeat such viruses.
In this project, a metamorphic engine, which uses code obfuscation techniques, is implemented to bypass commercial scanners. A set of anti-heuristic strategies are used to evade code emulation and heuristic detection. Using a combination of the above techniques, the detection rate of a well known sample virus is reduced significantly. Finally, a brief comparative study of major commercial anti-virus software is performed with respect to their detection capability.

Item Type:Thesis (BTech)
Uncontrolled Keywords:Virology, Information Security, Metamorphic Virus, Code Obfuscation,
Subjects:Engineering and Technology > Computer and Information Science > Information Security
Divisions: Engineering and Technology > Department of Computer Science
ID Code:3560
Deposited By:Mr. Yashveer Rana
Deposited On:28 May 2012 16:14
Last Modified:28 May 2012 16:14
Supervisor(s):Jena, S K

Repository Staff Only: item control page