Presentation is loading. Please wait.

Presentation is loading. Please wait.

Dr. Richard Ford  Fundamental Definitions  What is Malcode?  Malcode Overview  Follows: Szor Ch.1 & 2.

Published byBertha Smith Modified over 9 years ago

Similar presentations

Presentation on theme: "Dr. Richard Ford  Fundamental Definitions  What is Malcode?  Malcode Overview  Follows: Szor Ch.1 & 2."— Presentation transcript:

1 Dr. Richard Ford rford@fit.edu

2  Fundamental Definitions  What is Malcode?  Malcode Overview  Follows: Szor Ch.1 & 2.

3  Like most researchers, I got hit by a Virus  I disassembled the virus, and began on this wonderful journey of discovery…  Making every possible mistake on the way!

4  MMC = Malicious Mobile Code  Critical word: Mobile  MMC is designed to move from one machine to another

5  Viruses  Trojan Horses  Worms  Blended threats

6  A virus is a malicious program that modifies other host files or boot areas to replicate. In most cases, the host object is modified to contain a complete copy (possibly evolved) of the malicious program code. The newly- infected object is capable of spreading the “infection” further

7  A Trojan, or Trojan Horse, is a non-replicating program masquerading as one type of program with its real intent hidden from the user.

8  A worm is a piece of replicating code that uses its own program coding to spread with minimal user intervention. Unlike viruses worms do not “infect” other programs or boot sectors

9  Replication + something else bad (like an exploit)

10  A technology that aids in gathering information about a user or content of a machine without that user’s knowledge

11  Pretty much Spyware that tells you exactly what it’s going to do…  Always read the EULA…

12  Colloquial but descriptive  “Any piece of software that the user doesn’t want”

13  In The Wild  Dr0pper  “Generation 0”<- this is a zero  Payloads  Rootkit

14  Interesting problem  Go ahead and read: http://www.virusbtn.com/magazine/archives/pdf/20 03/200303.pdf: (p14) That Which We Call Rose.A http://www.virusbtn.com/magazine/archives/pdf/20 03/200303.pdf  What really is in a name?  For the other side, read http://www.virusbtn.com/magazine/archives/20030 1/caro.xml or Szor Chapter 2, 2.5. http://www.virusbtn.com/magazine/archives/20030 1/caro.xml or Szor Chapter 2

15  What is the goal of virus naming?  Assignment: Read Szor Ch.1 & 2 for Tuesday’s class

16  Is there any such thing as a good virus?  What do you think about this: http://www.samspublishing.com/articles/prin terfriendly.asp?p=337309&rl=1 http://www.samspublishing.com/articles/prin terfriendly.asp?p=337309&rl=1

17  Viruses and their environment…

Download ppt "Dr. Richard Ford  Fundamental Definitions  What is Malcode?  Malcode Overview  Follows: Szor Ch.1 & 2."

Similar presentations

Thank you to IT Training at Indiana University Computer Malware.

Thank you to IT Training at Indiana University Computer Malware.
Presented by: Melissa Dark CERIAS, Purdue University.

Presented by: Melissa Dark CERIAS, Purdue University.
September,2012 Managing Files and Folders 4/23/2015 Compiled By:- Solomon W. Demissie 1.

September,2012 Managing Files and Folders 4/23/2015 Compiled By:- Solomon W. Demissie 1.
Lecture: Malicious Code CIS 3360 Ratan K. Guha. Malicious Code2 Overview and Reading Assignments Defining malicious logic Types Action by Viruses Reading.

Lecture: Malicious Code CIS 3360 Ratan K. Guha. Malicious Code2 Overview and Reading Assignments Defining malicious logic Types Action by Viruses Reading.
Virus code actions Or ‘how viruses work’. Replication Spreads quickly and can be difficult to control Can be attached to any type of file and make copies.

Virus code actions Or ‘how viruses work’. Replication Spreads quickly and can be difficult to control Can be attached to any type of file and make copies.
COMP6005 An Introduction to Computing Session One: An Introduction to Computing Security Issues.

COMP6005 An Introduction to Computing Session One: An Introduction to Computing Security Issues.
Chapter 3 (Part 1) Network Security

Chapter 3 (Part 1) Network Security
Viruses and Malicious Code

Viruses and Malicious Code
Chapter 14 Computer Security Threats

Chapter 14 Computer Security Threats
________________ CS3235, Nov 2002 Viruses Adapted from Pfleeger[Chap 5]. A virus is a program [fragment] that can pass on malicious code [usually itself]

________________ CS3235, Nov 2002 Viruses Adapted from Pfleeger[Chap 5]. A virus is a program [fragment] that can pass on malicious code [usually itself]
Chapter 14 Computer Security Threats Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Operating Systems: Internals and Design Principles,

Chapter 14 Computer Security Threats Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Operating Systems: Internals and Design Principles,
Computer Viruses. History Malicious software – 1970’s Programs distributed over exchange servers speeds spread of viruses Brain sparks term: Virus.

Computer Viruses. History Malicious software – 1970’s Programs distributed over exchange servers speeds spread of viruses Brain sparks term: Virus.
Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.

Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.
Internet Safety for Students Malicious Programs By: Mr. Bradshaw Scott City R-1 Schools.

Internet Safety for Students Malicious Programs By: Mr. Bradshaw Scott City R-1 Schools.
Definitions  Virus A small piece of software that attaches itself to a program on the computer. It can cause serious damage to your computer.  Worm.

Definitions  Virus A small piece of software that attaches itself to a program on the computer. It can cause serious damage to your computer.  Worm.
Chapter Nine Maintaining a Computer Part III: Malware.

Chapter Nine Maintaining a Computer Part III: Malware.
R. FRANK NIMS MIDDLE SCHOOL A BRIEF INTRODUCTION TO VIRUSES.

R. FRANK NIMS MIDDLE SCHOOL A BRIEF INTRODUCTION TO VIRUSES.
Done By:Salha Mohammed Obaid AL-kaabi ID:201211567.

Done By:Salha Mohammed Obaid AL-kaabi ID:
Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden

Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden
Internet Safety CSA 105 1.0 September 21, 2010. Internet Threats Malware (viruses) Spyware Spam Hackers Cyber-criminals.

Internet Safety CSA September 21, Internet Threats Malware (viruses) Spyware Spam Hackers Cyber-criminals.

Similar presentations

Ads by Google