{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,10,22]],"date-time":"2024-10-22T21:03:20Z","timestamp":1729631000178,"version":"3.28.0"},"reference-count":27,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2014,8]]},"DOI":"10.1109\/issa.2014.6950504","type":"proceedings-article","created":{"date-parts":[[2014,11,12]],"date-time":"2014-11-12T22:09:30Z","timestamp":1415830170000},"page":"1-8","source":"Crossref","is-referenced-by-count":1,"title":["Towards a sandbox for the deobfuscation and dissection of PHP malware"],"prefix":"10.1109","author":[{"given":"Peter M.","family":"Wrench","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Barry V. W.","family":"Irwin","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"19","doi-asserted-by":"publisher","DOI":"10.1007\/11523468_107"},{"journal-title":"The PHP Group","year":"2013","key":"17"},{"journal-title":"Crypto++ 5 6 0 Benchmarks","year":"2009","author":"dai","key":"18"},{"key":"15","doi-asserted-by":"publisher","DOI":"10.1109\/FOSE.2007.27"},{"key":"16","doi-asserted-by":"publisher","DOI":"10.1007\/s11416-007-0074-9"},{"journal-title":"A Taxonomy of Obfuscating Transformations","year":"1997","author":"collberg","key":"13"},{"key":"14","first-page":"1","article-title":"On the (im)possibility of obfuscating programs","volume":"2001","author":"barak","year":"2001","journal-title":"Advances in Cryptology-CRYPTO"},{"journal-title":"Beginning PHP 5 3","year":"2011","author":"doyle","key":"11"},{"journal-title":"Old Web Shells New Tricks","year":"2012","author":"kazanciyan","key":"12"},{"journal-title":"The PHP Group","year":"2013","key":"21"},{"journal-title":"The PHP Group","year":"2013","key":"20"},{"key":"22","doi-asserted-by":"crossref","first-page":"32","DOI":"10.1109\/MSP.2007.45","article-title":"Toward automated dynamic malware analysis using cwsandbox","volume":"5","author":"willems","year":"2007","journal-title":"Security &Privacy IEEE"},{"key":"23","article-title":"The software similarity problem in malware analysis","author":"walenstein","year":"2007","journal-title":"Duplication Redundancy and Similarity in Software"},{"key":"24","doi-asserted-by":"publisher","DOI":"10.1109\/COMSNETS.2009.4808876"},{"journal-title":"Context Triggered Piecewise Hashes","year":"2013","author":"kornblum","key":"25"},{"key":"26","doi-asserted-by":"crossref","first-page":"256","DOI":"10.1007\/978-3-642-03549-4_16","article-title":"Evil searching: Compromise and recompromise of internet hosts for phishing","volume":"5628","author":"moore","year":"2009","journal-title":"Financial Cryptography and Data Security Ser Lecture Notes in Computer Science"},{"key":"27","first-page":"197","article-title":"Malware obfuscation measuring via evolutionary similarity","author":"li","year":"2009","journal-title":"first International Conference on Future Information Networks"},{"journal-title":"Malware Revolution A Change in Target Microsoft","year":"2007","author":"landesman","key":"3"},{"key":"2","doi-asserted-by":"publisher","DOI":"10.1145\/1500879.1500894"},{"journal-title":"Professional PHP4 Ser Professional Series","year":"2002","author":"argerich","key":"10"},{"journal-title":"Programming PHP","year":"2005","author":"tatroe","key":"1"},{"key":"7","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2007.21"},{"key":"6","doi-asserted-by":"publisher","DOI":"10.1145\/1190215.1190270"},{"key":"5","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2005.20"},{"journal-title":"Number of the Month 70K per Day Kaspersky Labs","year":"2011","author":"kaspersky","key":"4"},{"journal-title":"Impeding Malware Analysis Using Conditional Code Obfuscation","year":"2008","author":"sharif","key":"9"},{"key":"8","doi-asserted-by":"crossref","first-page":"34","DOI":"10.1145\/1013886.1007518","article-title":"Testing malware detectors","volume":"29","author":"christodorescu","year":"2004","journal-title":"SIGSOFT Softw Eng Notes"}],"event":{"name":"2014 Information Security for South Africa (ISSA)","start":{"date-parts":[[2014,8,13]]},"location":"Johannesburg, South Africa","end":{"date-parts":[[2014,8,14]]}},"container-title":["2014 Information Security for South Africa"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6940061\/6950479\/06950504.pdf?arnumber=6950504","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2017,6,22]],"date-time":"2017-06-22T20:05:10Z","timestamp":1498161910000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/6950504\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2014,8]]},"references-count":27,"URL":"https:\/\/doi.org\/10.1109\/issa.2014.6950504","relation":{},"subject":[],"published":{"date-parts":[[2014,8]]}}}