{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,18]],"date-time":"2026-07-18T04:47:36Z","timestamp":1784350056344,"version":"3.55.0"},"reference-count":70,"publisher":"IEEE","license":[{"start":{"date-parts":[[2022,5,1]],"date-time":"2022-05-01T00:00:00Z","timestamp":1651363200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-009"},{"start":{"date-parts":[[2022,5,1]],"date-time":"2022-05-01T00:00:00Z","timestamp":1651363200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-001"}],"funder":[{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100000781","name":"European Research Council","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100000781","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2022,5]]},"DOI":"10.1109\/sp46214.2022.9833626","type":"proceedings-article","created":{"date-parts":[[2022,7,27]],"date-time":"2022-07-27T19:28:05Z","timestamp":1658950085000},"page":"1574-1589","source":"Crossref","is-referenced-by-count":30,"title":["Wobfuscator: Obfuscating JavaScript Malware via Opportunistic Translation to WebAssembly"],"prefix":"10.1109","author":[{"given":"Alan","family":"Romano","sequence":"first","affiliation":[{"name":"University at Buffalo, SUNY Buffalo,United States"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Daniel","family":"Lehmann","sequence":"additional","affiliation":[{"name":"University of Stuttgart,Stuttgart,Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Michael","family":"Pradel","sequence":"additional","affiliation":[{"name":"University of Stuttgart,Stuttgart,Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Weihang","family":"Wang","sequence":"additional","affiliation":[{"name":"University at Buffalo, SUNY Buffalo,United States"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"263","reference":[{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1002\/sec.1064"},{"key":"ref57","article-title":"Taint tracking for webassembly","volume":"abs 1807 8349","author":"szanto","year":"2018","journal-title":"CoRR"},{"key":"ref12","article-title":"npm rank","year":"0"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2016.48"},{"key":"ref15","article-title":"Gnirts","year":"0"},{"key":"ref59","doi-asserted-by":"publisher","DOI":"10.1145\/2714576.2714620"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijhcs.2015.05.005"},{"key":"ref58","doi-asserted-by":"publisher","DOI":"10.1145\/2590296.2590311"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.1145\/3419394.3423616"},{"key":"ref52","doi-asserted-by":"publisher","DOI":"10.1145\/3278532.3278539"},{"key":"ref11","first-page":"24z","article-title":"Malicious Javascript Dataset","volume":"t17","year":"2021"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.1145\/3308558.3313752"},{"key":"ref10","article-title":"WebAssembly Website","year":"0"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1016\/j.procs.2016.07.291"},{"key":"ref17","first-page":"26z","article-title":"JStap: A Static Pre-Filter for Malicious JavaScript Detection","volume":"t13","year":"2021"},{"key":"ref16","first-page":"18z","article-title":"JaSt - JS AST-Based Analysis","volume":"t19","year":"2021"},{"key":"ref19","first-page":"z","article-title":"syntactic-jsdetector","volume":"t05","year":"2021"},{"key":"ref18","first-page":"48z","article-title":"lexical-jsdetector","volume":"t05","year":"2021"},{"key":"ref51","doi-asserted-by":"crossref","first-page":"1129","DOI":"10.1145\/3324884.3416580","article-title":"MinerRay: Semantics-Aware Analysis for Ever-Evolving Cryptojacking Detection","author":"romano","year":"2020","journal-title":"IEEE\/ACM Int Conference on Automated Software Engineering (ASE)"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1145\/1920261.1920267"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1016\/j.asoc.2019.105721"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-22038-9_2"},{"key":"ref48","article-title":"The ghost in the browser: Analysis of web-based malware","author":"provos","year":"2007","journal-title":"First Workshop on Hot Topics in Understanding Botnets HotBots&#x2019;07 Cambridge MA USA April 10 2007"},{"key":"ref47","first-page":"23z","article-title":"Javascript Malware Collection","volume":"t19","author":"petrak","year":"2021"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1145\/3297858.3304068"},{"key":"ref41","first-page":"217","article-title":"Everything Old is New Again: Binary Security of WebAssembly","author":"lehmann","year":"2020","journal-title":"29th USENIX Security Symposium USENIX Security 2020 August 12-14 2020"},{"key":"ref44","article-title":"Microsoft digital defense report","year":"2020"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1145\/1866307.1866356"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1145\/2914770.2837671"},{"key":"ref8","article-title":"wabt","year":"0"},{"key":"ref7","article-title":"VirusTotal","year":"0"},{"key":"ref9","article-title":"WebAssembly Core Specification","year":"0"},{"key":"ref4","article-title":"GitHub - javascript-obfuscator\/javascript-obfuscator: A powerful obfuscator for JavaScript and Node.js","year":"0"},{"key":"ref3","article-title":"Esprima","year":"0"},{"key":"ref6","article-title":"Loading WebAssembly modules efficiently","year":"0"},{"key":"ref5","article-title":"JSObfu","year":"0","journal-title":"Rapid7"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1145\/3243734.3243858"},{"key":"ref35","article-title":"NOFUS: Automatically Detecting&#x201D; + String.fromCharCode(32) + &#x201C;ObFuSCateD &#x201D;.toLowerCase() + &#x201D;JavaScript Code","author":"kaplan","year":"2011","journal-title":"Tech Rep MSR-TR-2011-57"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1145\/3243734.3243840"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1145\/3308558.3313665"},{"key":"ref36","first-page":"637","article-title":"Revolver: An automated approach to the detection of evasive web-based malware","author":"kapravelos","year":"2013","journal-title":"Proceedings of the 22th USENIX Security Symposium Washington DC USA August 14-16 2013"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1145\/3062341.3062363"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1145\/3178876.3186097"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1145\/3442381.3450138"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1145\/3180155.3180228"},{"key":"ref2","article-title":"espree","year":"0"},{"key":"ref1","article-title":"escodegen","year":"0"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.48"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1145\/3038912.3052674"},{"key":"ref70","article-title":"Zswang\/jfogs","year":"0"},{"key":"ref24","article-title":"ZOZZLE: fast and precise in-browser javascript malware detection","author":"curtsinger","year":"2011","journal-title":"20th USENIX Security Symposium San Francisco CA USA August 8-12 2011 Proceedings"},{"key":"ref68","doi-asserted-by":"publisher","DOI":"10.1145\/2771783.2771814"},{"key":"ref23","first-page":"281","article-title":"Detection and analysis of driveby-download attacks and malicious javascript code","author":"cova","year":"2010","journal-title":"Proceedings of the 19th International Conference on World Wide Web WWW 2010 Raleigh North Carolina USA April 26-30 2010"},{"key":"ref67","doi-asserted-by":"publisher","DOI":"10.1145\/2435349.2435364"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3345656"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978313"},{"key":"ref69","doi-asserted-by":"publisher","DOI":"10.1109\/BWCCA.2010.85"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1145\/1963405.1963436"},{"key":"ref64","article-title":"WebAssembly Specification","year":"2017"},{"key":"ref63","doi-asserted-by":"publisher","DOI":"10.1002\/sec.1441"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1007\/s10664-014-9321-0"},{"key":"ref66","doi-asserted-by":"publisher","DOI":"10.1109\/MALWARE.2012.6461002"},{"key":"ref21","first-page":"7","article-title":"An Evaluation of the Google Chrome Extension Security Architecture","author":"carlini","year":"2012","journal-title":"Proceedings of the 21st USENIX Conference on Security Symposium ser Security&#x2019;12"},{"key":"ref65","doi-asserted-by":"publisher","DOI":"10.1145\/2736277.2741630"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-93411-2_14"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1145\/3359789.3359813"},{"key":"ref29","article-title":"Taintassembly: Taint-based information flow control tracking for webassembly","volume":"abs 1802 1050","author":"fu","year":"2018","journal-title":"CoRR"},{"key":"ref60","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP.2016.21"},{"key":"ref62","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-98989-1_7"},{"key":"ref61","doi-asserted-by":"publisher","DOI":"10.1002\/spe.2648"}],"event":{"name":"2022 IEEE Symposium on Security and Privacy (SP)","location":"San Francisco, CA, USA","start":{"date-parts":[[2022,5,22]]},"end":{"date-parts":[[2022,5,26]]}},"container-title":["2022 IEEE Symposium on Security and Privacy (SP)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/9833550\/9833558\/09833626.pdf?arnumber=9833626","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,11,8]],"date-time":"2023-11-08T23:05:17Z","timestamp":1699484717000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9833626\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,5]]},"references-count":70,"URL":"https:\/\/doi.org\/10.1109\/sp46214.2022.9833626","relation":{},"subject":[],"published":{"date-parts":[[2022,5]]}}}