{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,27]],"date-time":"2025-03-27T06:25:29Z","timestamp":1743056729427,"version":"3.40.3"},"publisher-location":"Cham","reference-count":27,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031649530"},{"type":"electronic","value":"9783031649547"}],"license":[{"start":{"date-parts":[[2024,10,15]],"date-time":"2024-10-15T00:00:00Z","timestamp":1728950400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,10,15]],"date-time":"2024-10-15T00:00:00Z","timestamp":1728950400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-3-031-64954-7_21","type":"book-chapter","created":{"date-parts":[[2024,10,14]],"date-time":"2024-10-14T10:02:17Z","timestamp":1728900137000},"page":"409-425","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["PDFIET: PDF Malicious Indicators Extraction Technique Through Optimized Symbolic Execution"],"prefix":"10.1007","author":[{"given":"Enzhou","family":"Song","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Tao","family":"Hu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Peng","family":"Yi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Wenbo","family":"Wang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,10,15]]},"reference":[{"issue":"12","key":"21_CR1","first-page":"3831","volume":"42","author":"J Lei","year":"2022","unstructured":"Lei, J., Yi, P., Chen, X., Wang, L., Mao, M.: PDF document detection model based on system calls and data provenance. J. Comput. Appl. 42(12), 3831\u20133840 (2022)","journal-title":"J. Comput. Appl."},{"issue":"24","key":"21_CR2","doi-asserted-by":"publisher","first-page":"12134","DOI":"10.3390\/app112412134","volume":"11","author":"X Lu","year":"2021","unstructured":"Lu, X., Wang, F., Jiang, C., Lio, P.: A universal malicious documents static detection framework based on feature generalization. Appl. Sci. 11(24), 12134 (2021)","journal-title":"Appl. Sci."},{"key":"21_CR3","doi-asserted-by":"publisher","first-page":"246","DOI":"10.1016\/j.cose.2014.10.014","volume":"48","author":"N Nissim","year":"2015","unstructured":"Nissim, N., Cohen, A., Glezer, C., Elovici, Y.: Detection of malicious PDF files and directions for enhancements: a state-of-the art survey. Comput. Secur. 48, 246\u2013266 (2015)","journal-title":"Comput. Secur."},{"issue":"3","key":"21_CR4","first-page":"54","volume":"6","author":"M Yu","year":"2021","unstructured":"Yu, M., Jiang, J.G., Li, G., Liu, C., Huang, W.Q., Song, N.: A survey of research on malicious document detection. J. Cyber Secur. 6(3), 54\u201376 (2021)","journal-title":"J. Cyber Secur."},{"key":"21_CR5","doi-asserted-by":"publisher","unstructured":"Wang Y.: The de-obfuscation method in the static detection of malicious PDF documents. In: 2021 7th Annual International Conference on Network and Information Systems for Computers, ICNISC, pp. 44\u201347. Guiyang, China (2021). https:\/\/doi.org\/10.1109\/ICNISC54316.2021.00016","DOI":"10.1109\/ICNISC54316.2021.00016"},{"key":"21_CR6","doi-asserted-by":"publisher","first-page":"1707","DOI":"10.4028\/www.scientific.net\/AMM.602-605.1707","volume":"602\u2013605","author":"X Gao","year":"2014","unstructured":"Gao, X., Yu, M., Jiang, J.G., Qiu, X.L., Liu, C.: A combined malicious documents detecting method based on emulators. Appl. Mech. Mater. 602\u2013605, 1707\u20131712 (2014)","journal-title":"Appl. Mech. Mater."},{"issue":"8","key":"21_CR7","doi-asserted-by":"publisher","first-page":"217","DOI":"10.3390\/fi14080217","volume":"14","author":"A Alazab","year":"2022","unstructured":"Alazab, A., Khraisat, A., Alazab, M., Singh, S.: Detection of obfuscated malicious javascript code. Future Internet 14(8), 217\u2013231 (2022)","journal-title":"Future Internet"},{"key":"21_CR8","unstructured":"ISO32000-1:2020. https:\/\/www.pdfa.org\/resource\/iso-32000-pdf\/"},{"key":"21_CR9","series-title":"Lecture Notes in Computer Science (Lecture Notes in Artificial Intelligence)","doi-asserted-by":"publisher","first-page":"510","DOI":"10.1007\/978-3-642-31537-4_40","volume-title":"Machine Learning and Data Mining in Pattern Recognition","author":"D Maiorca","year":"2012","unstructured":"Maiorca, D., Giacinto, G., Corona, I.: A pattern recognition system for malicious PDF files detection. In: Perner, P. (ed.) MLDM 2012. LNCS (LNAI), vol. 7376, pp. 510\u2013524. Springer, Heidelberg (2012). https:\/\/doi.org\/10.1007\/978-3-642-31537-4_40"},{"issue":"2","key":"21_CR10","first-page":"432","volume":"38","author":"T Wang","year":"2021","unstructured":"Wang, T., Mou, Z.H., Zhang, Z.H.: Detecting obfuscated malicious Javascript code based on function call information. Comput. Simul. 38(2), 432\u2013437 (2021)","journal-title":"Comput. Simul."},{"issue":"3","key":"21_CR11","doi-asserted-by":"publisher","first-page":"184","DOI":"10.1049\/trit.2020.0026","volume":"5","author":"S Ndichu","year":"2020","unstructured":"Ndichu, S., Kim, S., Ozawa, S.: Deobfuscation, unpacking, and decoding of obfuscated malicious JavaScript for machine learning models detection performance improvement. CAAI Trans. Intell. Technol. 5(3), 184\u2013192 (2020)","journal-title":"CAAI Trans. Intell. Technol."},{"issue":"1","key":"21_CR12","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1080\/19393555.2011.624160","volume":"21","author":"M Fraiwan","year":"2012","unstructured":"Fraiwan, M., Al-Salman, R., Khasawneh, N., Conrad, S.: Analysis and identifification of malicious Javascript code. Inf. Secur. J. Global Perspect. 21(1), 1\u201311 (2012)","journal-title":"Inf. Secur. J. Global Perspect."},{"key":"21_CR13","doi-asserted-by":"publisher","unstructured":"Laskov P, \u015frndi\u0107 N.: Static detection of malicious Javascript-bearing PDF documents. In: Proceedings of the 27th Annual Computer Security Applications Conference, ACSAC, vol. 2011, pp. 373\u2013382. Orlando, Florida, USA (2011). https:\/\/doi.org\/10.1145\/2076732.2076785","DOI":"10.1145\/2076732.2076785"},{"key":"21_CR14","doi-asserted-by":"publisher","unstructured":"Li, M., Zhou, Y., Yu, M., Liu, C.: Combining static and dynamic analysis for the detection of malicious JavaScript-bearing PDF documents. In: Proceedings of the 2016 International Conference on Computer Science, Technology and Application, CSTA, pp. 475\u2013482. Changsha, China (2017). https:\/\/doi.org\/10.1142\/9789813200449_0059","DOI":"10.1142\/9789813200449_0059"},{"key":"21_CR15","doi-asserted-by":"publisher","unstructured":"Lu, X., Zhuge, J.W., Wang, R.Y., Cao, Y., Chen, Y.: De-obfuscation and detection of malicious PDF files with high accuracy. In: 2013 46th Hawaii International Conference on System Sciences, pp. 4890\u20134899. IEEE, Wailea, HI, USA (2013). https:\/\/doi.org\/10.1109\/HICSS.2013.166","DOI":"10.1109\/HICSS.2013.166"},{"key":"21_CR16","doi-asserted-by":"publisher","unstructured":"Cova, M., Kruegel, C., Vigna, G.: Detection and analysis of drive-by-download attacks and malicious javascript code. In: Proceedings of the 19th International Conference on World Wide Web, pp. 281\u2013290. ACM, Raleigh, North Carolina, USA (2010). https:\/\/doi.org\/10.1145\/1772690.1772720","DOI":"10.1145\/1772690.1772720"},{"issue":"7","key":"21_CR17","doi-asserted-by":"publisher","first-page":"1699","DOI":"10.11897\/SP.J.1016.2017.01699","volume":"40","author":"HL Ma","year":"2020","unstructured":"Ma, H.L., Wang, W., Han, Z.: Detecting and de-obfuscation obfuscated malicious JavaScript code. Chin. J. Comput. 40(7), 1699\u20131713 (2020). https:\/\/doi.org\/10.11897\/SP.J.1016.2017.01699","journal-title":"Chin. J. Comput."},{"key":"21_CR18","doi-asserted-by":"publisher","unstructured":"Hu, X., Cheng, Y., Duan, Y., Henderson, A., Yin, H.: JSForce: a forced execution engine for malicious Javascript detection. In: Security and Privacy in Communication Networks, LNICST, vol. 238, pp. 704\u2013720. Niagara Falls, ON, Canada (2017). https:\/\/doi.org\/10.1007\/978-3-319-78813-5_37","DOI":"10.1007\/978-3-319-78813-5_37"},{"key":"21_CR19","unstructured":"CVE-2020-14425. https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=2020-14425"},{"key":"21_CR20","unstructured":"Virustotal. https:\/\/www.virustotal.com\/gui\/home\/upload"},{"key":"21_CR21","unstructured":"Nodejs. https:\/\/github.com\/nodejs\/Release"},{"key":"21_CR22","unstructured":"Jalang2. https:\/\/github.com\/Samsung\/jalangi2"},{"key":"21_CR23","unstructured":"Z3. https:\/\/github.com\/Z3Prover\/z3"},{"key":"21_CR24","unstructured":"Esprima. https:\/\/github.com\/jquery\/esprima"},{"key":"21_CR25","unstructured":"Jsdetox. https:\/\/github.com\/svent\/jsdetox"},{"key":"21_CR26","unstructured":"Js-beaturify. https:\/\/github.com\/beautify-web\/js-beautify"},{"key":"21_CR27","unstructured":"Prepack. https:\/\/github.com\/facebookarchive\/prepack"}],"container-title":["Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","Security and Privacy in Communication Networks"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-64954-7_21","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,10,14]],"date-time":"2024-10-14T10:08:30Z","timestamp":1728900510000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-64954-7_21"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,10,15]]},"ISBN":["9783031649530","9783031649547"],"references-count":27,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-64954-7_21","relation":{},"ISSN":["1867-8211","1867-822X"],"issn-type":[{"type":"print","value":"1867-8211"},{"type":"electronic","value":"1867-822X"}],"subject":[],"published":{"date-parts":[[2024,10,15]]},"assertion":[{"value":"15 October 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SecureComm","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Security and Privacy in Communication Systems","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Hong Kong","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"China","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19 October 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"21 October 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"securecomm2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/securecomm.eai-conferences.org\/2023\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Confy +","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"180","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"50","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"28% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"2","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}