{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,12]],"date-time":"2026-06-12T16:35:08Z","timestamp":1781282108661,"version":"3.54.1"},"reference-count":87,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2022,1,1]],"date-time":"2022-01-01T00:00:00Z","timestamp":1640995200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"},{"start":{"date-parts":[[2022,1,1]],"date-time":"2022-01-01T00:00:00Z","timestamp":1640995200000},"content-version":"am","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"DOI":"10.13039\/100000001","name":"U.S. National Science Foundation","doi-asserted-by":"publisher","award":["1821560"],"award-info":[{"award-number":["1821560"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2022]]},"DOI":"10.1109\/access.2022.3207782","type":"journal-article","created":{"date-parts":[[2022,9,19]],"date-time":"2022-09-19T20:02:31Z","timestamp":1663617751000},"page":"99909-99930","source":"Crossref","is-referenced-by-count":10,"title":["MalView: Interactive Visual Analytics for Comprehending Malware Behavior"],"prefix":"10.1109","volume":"10","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-6554-2327","authenticated-orcid":false,"given":"Huyen N.","family":"Nguyen","sequence":"first","affiliation":[{"name":"Department of Computer Science, Texas Tech University, Lubbock, TX, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-3028-094X","authenticated-orcid":false,"given":"Faranak","family":"Abri","sequence":"additional","affiliation":[{"name":"Department of Computer Science, San Jose State University, San Jose, CA, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9702-8904","authenticated-orcid":false,"given":"Vung","family":"Pham","sequence":"additional","affiliation":[{"name":"Department of Computer Science, Sam Houston State University, Huntsville, TX, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Moitrayee","family":"Chatterjee","sequence":"additional","affiliation":[{"name":"Department of Computer Science, New Jersey City University, Jersey City, NJ, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1646-7495","authenticated-orcid":false,"given":"Akbar Siami","family":"Namin","sequence":"additional","affiliation":[{"name":"Department of Computer Science, Texas Tech University, Lubbock, TX, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Tommy","family":"Dang","sequence":"additional","affiliation":[{"name":"Department of Computer Science, Texas Tech University, Lubbock, TX, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/BigData47090.2019.9006514"},{"key":"ref2","volume-title":"Cuckoo Sandox: Automated Malware Analysis","author":"Guarnieri","year":"2019"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/3213846.3229501"},{"key":"ref4","first-page":"43","article-title":"Sparse representation modeling for software corpora","volume-title":"Results of SEI Line-Funded Exploratory New Starts Projects","author":"Casey","year":"2012"},{"key":"ref5","first-page":"105","article-title":"A survey of visualization systems for malware analysis","volume-title":"Proc. Eurographics Conf. Vis. (EuroVis)-STARs","author":"Wagner"},{"key":"ref6","volume-title":"Process Monitor\u2014Windows Sysinternals\u2014Microsoft Docs","year":"2020"},{"key":"ref7","volume-title":"Windows Functions in Malware Analysis Cheat Sheet Part 1","year":"2015"},{"key":"ref8","volume-title":"Windows Functions in Malware Analysis Cheat Sheet Part 2","year":"2015"},{"key":"ref9","volume-title":"Windows Sysinternals Administrator\u2019s Reference","author":"Russinovich","year":"2011"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/TVCG.2011.185"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/INFVIS.2005.1532136"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1016\/B978-155860915-0\/50046-9"},{"key":"ref13","volume-title":"Correlating domain registrations and DNS first activity in general and for malware","author":"Spring","year":"2011"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/VISAP.2017.8282373"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-90439-5_17"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/VAST47406.2019.8986947"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/BigData47090.2019.9006417"},{"key":"ref18","volume-title":"How Microsoft Identifies Malware and Potentially Unwanted Applications","year":"2020"},{"key":"ref19","volume-title":"Malware Names","year":"2020"},{"key":"ref20","volume-title":"Cyberthreats, Viruses, and Malware\u2014Microsoft Security Intelligence","year":"2019"},{"key":"ref21","volume-title":"October 2018\u2019s Most Wanted Malware: For the First Time, Remote Access Trojan Reaches Top 10 Threats","year":"2019"},{"key":"ref22","volume-title":"Virus Share","year":"2019"},{"key":"ref23","volume-title":"Virustotal Public API V2.0","author":"Sistemas","year":"2019"},{"key":"ref24","volume-title":"What is a Trojan Virus?\u2014Definition","year":"2019"},{"key":"ref25","volume-title":"Trojan: Win32\/MultiInjector.C","year":"2022"},{"key":"ref26","volume-title":"Backdoor Attack\u2014What is Backdoor?","year":"2019"},{"key":"ref27","volume-title":"Ransomware: A Growing Menace","author":"O\u2019Gorman"},{"key":"ref28","volume-title":"Kaseya Hijacked, Thousands Attacked by Revil, Fix Delayed Again","year":"2021"},{"key":"ref29","volume-title":"The State of Ransomware Among SMBS","author":"Zamora","year":"2017"},{"key":"ref30","volume-title":"Behavior: Win32\/Bladabindi.gen","year":"2019"},{"key":"ref31","volume-title":"Behavior: Win32\/Vawtrak.A","year":"2019"},{"key":"ref32","volume-title":"Behavior: Win32\/Teerac.B","year":"2019"},{"key":"ref33","volume-title":"Behavior: Win32\/MultiInjector","year":"2019"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1016\/j.diin.2011.02.001"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2016.101"},{"key":"ref36","volume-title":"HackTool: Win32\/Mailpassview","year":"2019"},{"key":"ref37","volume-title":"Golroted Malware Uses Web Browser Weakness to Steal Sensitive Information","year":"2019"},{"key":"ref38","volume-title":"Free Automated Malware Analysis Service\u2014Hybrid Analysis","year":"2019"},{"key":"ref39","volume-title":"ANY.RUN\u2014Interactive Online Malware Sandbox","year":"2019"},{"key":"ref40","volume-title":"Mitre Att&ck Framework","year":"2019"},{"key":"ref41","volume-title":"Automated Malware Analysis & Sandbox: Falcon Sandbox","year":"2019"},{"key":"ref42","volume-title":"Yara: The Pattern Matching Swiss Knife for Malware Researchers","year":"2019"},{"key":"ref43","volume-title":"Metadefender Cloud","year":"2020"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1155\/2014\/132713"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-31128-4_22"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1145\/1409720.1409749"},{"key":"ref47","volume-title":"Rose Compiler: Program Analysis and Transformation","year":"2010"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1145\/2379690.2379696"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1145\/2671491.2671496"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1145\/2671491.2671500"},{"key":"ref51","doi-asserted-by":"publisher","DOI":"10.1109\/CICYBS.2013.6597204"},{"key":"ref52","doi-asserted-by":"publisher","DOI":"10.11113\/jt.v70.3512"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-08624-8_1"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1109\/VizSec48167.2019.9161583"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.1109\/ISI.2013.6578845"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1007\/s11416-015-0249-8"},{"key":"ref57","doi-asserted-by":"publisher","DOI":"10.1145\/2513228.2513294"},{"key":"ref58","doi-asserted-by":"publisher","DOI":"10.1145\/509907.509965"},{"key":"ref59","doi-asserted-by":"publisher","DOI":"10.1109\/ISRCS.2014.6900103"},{"key":"ref60","doi-asserted-by":"publisher","DOI":"10.1109\/ISBAST.2014.7013128"},{"key":"ref61","doi-asserted-by":"publisher","DOI":"10.1145\/1455770.1455779"},{"key":"ref62","doi-asserted-by":"publisher","DOI":"10.1145\/2664243.2664252"},{"key":"ref63","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-11379-1_2"},{"key":"ref64","doi-asserted-by":"publisher","DOI":"10.1016\/j.comcom.2019.01.003"},{"key":"ref65","doi-asserted-by":"publisher","DOI":"10.1109\/CTS.2013.6567221"},{"key":"ref66","doi-asserted-by":"publisher","DOI":"10.1145\/2381896.2381900"},{"key":"ref67","doi-asserted-by":"publisher","DOI":"10.1145\/1029208.1029222"},{"key":"ref68","doi-asserted-by":"publisher","DOI":"10.1145\/2379690.2379695"},{"key":"ref69","doi-asserted-by":"publisher","DOI":"10.1109\/ICSME.2017.74"},{"key":"ref70","first-page":"80","article-title":"ICC-inspect: Supporting runtime inspection of Android inter-component communications","volume-title":"Proc. 5th Int. Conf. Mobile Softw. Eng. Syst.","author":"Jenkins"},{"key":"ref71","doi-asserted-by":"publisher","DOI":"10.1145\/2671491.2671498"},{"key":"ref72","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2017.02.003"},{"key":"ref73","doi-asserted-by":"publisher","DOI":"10.2312\/evs.20191178"},{"key":"ref74","doi-asserted-by":"publisher","DOI":"10.1007\/s12665-020-8851-6"},{"key":"ref75","doi-asserted-by":"publisher","DOI":"10.1145\/3468784.3469851"},{"key":"ref76","doi-asserted-by":"publisher","DOI":"10.1109\/VIZSEC.2009.5375539"},{"key":"ref77","doi-asserted-by":"publisher","DOI":"10.1109\/VIZSEC.2009.5375540"},{"key":"ref78","doi-asserted-by":"publisher","DOI":"10.1109\/VIZSEC.2017.8062199"},{"key":"ref79","doi-asserted-by":"publisher","DOI":"10.1520\/SSMS20190029"},{"key":"ref80","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-85933-8_1"},{"key":"ref81","doi-asserted-by":"publisher","DOI":"10.1057\/ivs.2010.11"},{"key":"ref82","volume-title":"Cwsandbox\u2014Automated Online Malware Analysis","year":"2020"},{"key":"ref83","doi-asserted-by":"publisher","DOI":"10.1117\/12.883441"},{"key":"ref84","doi-asserted-by":"publisher","DOI":"10.1117\/12.883457"},{"key":"ref85","doi-asserted-by":"publisher","DOI":"10.1109\/VIZSEC.2018.8709230"},{"key":"ref86","doi-asserted-by":"publisher","DOI":"10.1145\/3406601.3406643"},{"key":"ref87","doi-asserted-by":"publisher","DOI":"10.1145\/3468784.3471603"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"https:\/\/ieeexplore.ieee.org\/ielam\/6287639\/9668973\/9895250-aam.pdf","content-type":"application\/pdf","content-version":"am","intended-application":"syndication"},{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6287639\/9668973\/09895250.pdf?arnumber=9895250","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,1,22]],"date-time":"2024-01-22T20:52:27Z","timestamp":1705956747000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9895250\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022]]},"references-count":87,"URL":"https:\/\/doi.org\/10.1109\/access.2022.3207782","relation":{},"ISSN":["2169-3536"],"issn-type":[{"value":"2169-3536","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022]]}}}