ČELEDA, Pavel, Radek KREJČÍ and Vojtěch KRMÍČEK. Revealing and Analysing Modem Malware. In 2012 IEEE International Conference on Communications (ICC). Ottawa, Canada: IEEE, 345 E 47TH ST, NEW YORK, NY 10017 USA, 2012. p. 971-975. ISBN 978-1-4577-2053-6. doi:10.1109/ICC.2012.6364598.
Other formats:   BibTeX LaTeX RIS
Basic information
Original name Revealing and Analysing Modem Malware
Name in Czech Odhalování a analyzování malwaru v modemech
Authors ČELEDA, Pavel (203 Czech Republic, guarantor, belonging to the institution), Radek KREJČÍ (203 Czech Republic) and Vojtěch KRMÍČEK (203 Czech Republic, belonging to the institution).
Edition Ottawa, Canada, 2012 IEEE International Conference on Communications (ICC), p. 971-975, 5 pp. 2012.
Publisher IEEE, 345 E 47TH ST, NEW YORK, NY 10017 USA
Other information
Original language English
Type of outcome Proceedings paper
Field of Study 10201 Computer sciences, information science, bioinformatics
Country of publisher Canada
Confidentiality degree is not subject to a state or trade secret
Publication form electronic version available online
RIV identification code RIV/00216224:14610/12:00058686
Organization unit Institute of Computer Science
ISBN 978-1-4577-2053-6
ISSN 1550-3607
Doi http://dx.doi.org/10.1109/ICC.2012.6364598
UT WoS 000312855701059
Keywords (in Czech) modem; malware; botnet; Linux; MIPSel; bezpečnost; monitorování; síť; NetFlow; ISP
Keywords in English modem; malware; botnet; Linux; MIPSel; security; monitoring; network; NetFlow; ISP
Tags rivok
Tags International impact, Reviewed
Changed by Changed by: doc. Ing. Pavel Čeleda, Ph.D., učo 206086. Changed: 22. 4. 2013 13:45.
Abstract
In this paper, we provide a formal description of modem malware life cycle. It is included a description of the modem malware evolution (history). We propose a set of techniques to perform detailed analysis of infected modem. We report on modem malware network activities in campus network and we propose NetFlow based detection method to reveal the modem malware spreading.
Abstract (in Czech)
V článku je uveden formální popis životního cyklu malwaru pro modemy. Je popsán evoluční vývoj malwaru pro modemy. Jsou navrženy techniky, které umožňují provádět detailní analýzu infikovaného modemu. Dále uvádíme informace o síťových aktivitách nakažených modemů v univerzitní síti a je navržena metoda využívající NetFlow data pro detekci šíření malwaru pro modemy.
Links
OVMASUN200801, research and development projectName: CYBER ? Bezpečnost informačních a komunikačních systémů AČR - on line monitorování, vizualizace a filtrace paketů. Rozvoj schopností Computer Incident Response Capability v prostředí Cyber Defence. (Acronym: CYBER)
Investor: Ministry of Defence of the CR, CYBER - Security of Czech Army Information and Communication Systems - On-line Monitoring, Visualization and Packet Filtration. Computer Incident Response Capability Development in the Cyber Defence Environment
Type Name Uploaded/Created by Uploaded/Created Rights
embedded-malware.pdf Licence Creative Commons  File version Čeleda, P. 10. 9. 2012

Properties

Address within IS
https://is.muni.cz/auth/publication/991565/embedded-malware.pdf
Address for the users outside IS
https://is.muni.cz/publication/991565/embedded-malware.pdf
Address within Manager
https://is.muni.cz/auth/publication/991565/embedded-malware.pdf?info
Address within Manager for the users outside IS
https://is.muni.cz/publication/991565/embedded-malware.pdf?info
Uploaded/Created
Mon 10. 9. 2012 11:05, doc. Ing. Pavel Čeleda, Ph.D.

Rights

Right to read
  • anyone on the Internet
Right to upload
 
Right to administer:
  • a concrete person doc. Ing. Pavel Čeleda, Ph.D., učo 206086
  • a concrete person RNDr. Vojtěch Krmíček, Ph.D., učo 51640
  • a concrete person RNDr. Radek Krejčí, učo 98863
Attributes
 

embedded-malware.pdf

Application
Open the file
Download file.
Address within IS
https://is.muni.cz/auth/publication/991565/embedded-malware.pdf
Address for the users outside IS
http://is.muni.cz/publication/991565/embedded-malware.pdf
File type
PDF (application/pdf)
Size
1,3 MB
Hash md5
d4fae21bdef21c23a3fb0516e047c8b2
Uploaded/Created
Mon 10. 9. 2012 11:05

embedded-malware.txt

Application
Open the file
Download file.
Address within IS
https://is.muni.cz/auth/publication/991565/embedded-malware.txt
Address for the users outside IS
http://is.muni.cz/publication/991565/embedded-malware.txt
File type
plain text (text/plain)
Size
23,9 KB
Hash md5
3da6ad3a2b905a2674843587e3303dda
Uploaded/Created
Mon 10. 9. 2012 11:06
Print
Report a file uploaded without authorization. Displayed: 18. 5. 2022 23:00