|
This article is cited in 6 scientific papers (total in 6 papers)
NUMERICAL METHODS AND DATA ANALYSIS
A method of searching for similar code sequences in executable binary files using a featureless approach
A. S. Yumaganov, V. V. Myasnikov Samara National Research University, Samara, Russia
Abstract:
The work is devoted to solving a problem of searching for similar code sequences in executable binary files. The proposed method involves partitioning the processor instructions into functional groups, forming a given function’s primary description by commands position in its body, followed by generating the function’s intermediate description through its comparison with the functions from a "base" library. With the dimensionality of the resulting vector reduced in this way, the resulting final description is then used to perform the search. Results of the experimental study demonstrate the operability of the proposed method. The efficiency of the proposed method is compared against existing methods of searching for similar code sequences. We also provide recommendations on the choice of parameters of the developed method.
Keywords:
searching, code sequence, featureless recognition.
Received: 22.05.2017 Accepted: 23.06.2017
Citation:
A. S. Yumaganov, V. V. Myasnikov, “A method of searching for similar code sequences in executable binary files using a featureless approach”, Computer Optics, 41:5 (2017), 756–764
Linking options:
https://www.mathnet.ru/eng/co446 https://www.mathnet.ru/eng/co/v41/i5/p756
|
|