PowerDrive: Accurate De-Obfuscation and Analysis of PowerShell Malware.
arXiv: Cryptography and Security, 2019.
PowerShell is nowadays a widely-used technology to administrate and manage Windows-based operating systems. However, it is also extensively used by malware vectors to execute payloads or drop additional malicious contents. Similarly to other scripting languages used by malware, PowerShell attacks are challenging to analyze due to the exte...更多
下载 PDF 全文