Sandbox Environment for Real Time Malware Analysis of IoT Devices

Gaurav Pramod  Kachare; Gaurav Choudhary; Shishir Kumar Shandilya; Vikas Sihag

doi:10.1007/978-3-031-10551-7_13

Sandbox Environment for Real Time Malware Analysis of IoT Devices

Gaurav Pramod Kachare
, Gaurav Choudhary
, Shishir Kumar Shandilya
, Vikas Sihag

VIT Bhopal University

Research output: Chapter in Book/Report/Conference proceeding › Book chapter › Research › peer-review

Abstract

The explosion in IoT devices’ growth becomes the primary target to attackers. It provides a large attack surface to attackers for Distributed Denial of Service (DDoS), Eavesdropping, Privilege Escalation, etc. With a lack of research in IoT security, there are lake solutions to analyze the advanced malware in a secure environment to understand IoT malware behavior. This paper has proposed a sandbox environment concept model that analyses malware, generates automated reports, and solves problems with the existing sandbox. Sandbox uses multiple machine-learning algorithms to analyze malware on three basic levels: static malware analysis, real-time malware analysis, and network
analysis. Then by consolidating the report from all this analysis, the sandbox environment generates the report. Static analysis is performed by collecting information from shared libraries, ELF, and other binary files using the Convolutional Neural Networks model generated automated analysis report.

Original language	English
Title of host publication	Computing Science, Communication and Security
Publisher	Springer
Publication date	2022
Pages	169–183
ISBN (Print)	978-3-031-10550-0
DOIs	https://doi.org/10.1007/978-3-031-10551-7_13
Publication status	Published - 2022
Event	2022 Computing Science, Communication and Security - Gujarat, India Duration: 6 Feb 2022 → 7 Feb 2022

Conference

Conference	2022 Computing Science, Communication and Security
Country/Territory	India
City	Gujarat
Period	06/02/2022 → 07/02/2022

Series	Communications in Computer and Information Science
Volume	1604
ISSN	1865-0929

Keywords

Sandbox
Malware
IoT
Security

Access to Document

10.1007/978-3-031-10551-7_13

OpenUrl availability

Check availability in DTU Findit

Cite this

@inbook{8cfe45e1e7ed4bdb8d8f618d97129851,

title = "Sandbox Environment for Real Time Malware Analysis of IoT Devices",

abstract = "The explosion in IoT devices{\textquoteright} growth becomes the primary target to attackers. It provides a large attack surface to attackers for Distributed Denial of Service (DDoS), Eavesdropping, Privilege Escalation, etc. With a lack of research in IoT security, there are lake solutions to analyze the advanced malware in a secure environment to understand IoT malware behavior. This paper has proposed a sandbox environment concept model that analyses malware, generates automated reports, and solves problems with the existing sandbox. Sandbox uses multiple machine-learning algorithms to analyze malware on three basic levels: static malware analysis, real-time malware analysis, and network analysis. Then by consolidating the report from all this analysis, the sandbox environment generates the report. Static analysis is performed by collecting information from shared libraries, ELF, and other binary files using the Convolutional Neural Networks model generated automated analysis report.",

keywords = "Sandbox, Malware, IoT, Security",

author = "Kachare, \{Gaurav Pramod\} and Gaurav Choudhary and Shandilya, \{Shishir Kumar\} and Vikas Sihag",

year = "2022",

doi = "10.1007/978-3-031-10551-7\_13",

language = "English",

isbn = "978-3-031-10550-0",

series = "Communications in Computer and Information Science",

publisher = "Springer",

pages = "169–183",

booktitle = "Computing Science, Communication and Security",

note = "2022 Computing Science, Communication and Security, COMS2 2022 ; Conference date: 06-02-2022 Through 07-02-2022",

}

Kachare, GP, Choudhary, G, Shandilya, SK & Sihag, V 2022, Sandbox Environment for Real Time Malware Analysis of IoT Devices. in Computing Science, Communication and Security. Springer, Communications in Computer and Information Science, vol. 1604, pp. 169–183, 2022 Computing Science, Communication and Security, Gujarat, India, 06/02/2022. https://doi.org/10.1007/978-3-031-10551-7_13

Sandbox Environment for Real Time Malware Analysis of IoT Devices. / Kachare, Gaurav Pramod ; Choudhary, Gaurav; Shandilya, Shishir Kumar et al.
Computing Science, Communication and Security. Springer, 2022. p. 169–183 (Communications in Computer and Information Science, Vol. 1604).

Research output: Chapter in Book/Report/Conference proceeding › Book chapter › Research › peer-review

TY - CHAP

T1 - Sandbox Environment for Real Time Malware Analysis of IoT Devices

AU - Kachare, Gaurav Pramod

AU - Choudhary, Gaurav

AU - Shandilya, Shishir Kumar

AU - Sihag, Vikas

PY - 2022

Y1 - 2022

N2 - The explosion in IoT devices’ growth becomes the primary target to attackers. It provides a large attack surface to attackers for Distributed Denial of Service (DDoS), Eavesdropping, Privilege Escalation, etc. With a lack of research in IoT security, there are lake solutions to analyze the advanced malware in a secure environment to understand IoT malware behavior. This paper has proposed a sandbox environment concept model that analyses malware, generates automated reports, and solves problems with the existing sandbox. Sandbox uses multiple machine-learning algorithms to analyze malware on three basic levels: static malware analysis, real-time malware analysis, and network analysis. Then by consolidating the report from all this analysis, the sandbox environment generates the report. Static analysis is performed by collecting information from shared libraries, ELF, and other binary files using the Convolutional Neural Networks model generated automated analysis report.

AB - The explosion in IoT devices’ growth becomes the primary target to attackers. It provides a large attack surface to attackers for Distributed Denial of Service (DDoS), Eavesdropping, Privilege Escalation, etc. With a lack of research in IoT security, there are lake solutions to analyze the advanced malware in a secure environment to understand IoT malware behavior. This paper has proposed a sandbox environment concept model that analyses malware, generates automated reports, and solves problems with the existing sandbox. Sandbox uses multiple machine-learning algorithms to analyze malware on three basic levels: static malware analysis, real-time malware analysis, and network analysis. Then by consolidating the report from all this analysis, the sandbox environment generates the report. Static analysis is performed by collecting information from shared libraries, ELF, and other binary files using the Convolutional Neural Networks model generated automated analysis report.

KW - Sandbox

KW - Malware

KW - IoT

KW - Security

U2 - 10.1007/978-3-031-10551-7_13

DO - 10.1007/978-3-031-10551-7_13

M3 - Book chapter

SN - 978-3-031-10550-0

T3 - Communications in Computer and Information Science

SP - 169

EP - 183

BT - Computing Science, Communication and Security

PB - Springer

T2 - 2022 Computing Science, Communication and Security

Y2 - 6 February 2022 through 7 February 2022

ER -

Sandbox Environment for Real Time Malware Analysis of IoT Devices

Abstract

Conference

Keywords

Access to Document

OpenUrl availability

Fingerprint

Cite this