{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,26]],"date-time":"2026-03-26T19:02:14Z","timestamp":1774551734671,"version":"3.50.1"},"reference-count":56,"publisher":"IEEE","license":[{"start":{"date-parts":[[2019,10,1]],"date-time":"2019-10-01T00:00:00Z","timestamp":1569888000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2019,10,1]],"date-time":"2019-10-01T00:00:00Z","timestamp":1569888000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2019,10,1]],"date-time":"2019-10-01T00:00:00Z","timestamp":1569888000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019,10]]},"DOI":"10.1109\/tencon.2019.8929620","type":"proceedings-article","created":{"date-parts":[[2019,12,13]],"date-time":"2019-12-13T02:01:41Z","timestamp":1576202501000},"page":"533-539","source":"Crossref","is-referenced-by-count":27,"title":["A survey of zero-day malware attacks and its detection methodology"],"prefix":"10.1109","author":[{"given":"Kiran","family":"Radhakrishnan","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Rajeev R","family":"Menon","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hiran V","family":"Nath","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref39","author":"andrs","year":"2017","journal-title":"Walking in Your Enemys Shadow When Fourth Party Collection Becomes Attribution Hell"},{"key":"ref38","author":"kizhakkinan","year":"2016","journal-title":"Erica Eng Threat Actor Leverages Windows Zero-Day Exploit in Payment Card Data Attacks Threat Actor Leverages Windows Zero-Day Exploit in Payment Card Data Attacks"},{"key":"ref33","year":"2014","journal-title":"Operation CloudyOmega Ichitaro zeroday and ongoing cyber espionage campaign targeting Japan"},{"key":"ref32","article-title":"Threat Analysis of BlackEnergy Malware for Synchrophasor based Real-time Control and Monitoring in Smart Grid","author":"khan","year":"2016","journal-title":"ICS-CSR"},{"key":"ref31","article-title":"Cyber Deterrence in Action?","author":"alperovitch","year":"2015","journal-title":"A story of one long HURRICANE PANDA campaign"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1049\/et.2014.0514"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1109\/MITP.2018.032501746"},{"key":"ref36","author":"hacquebord","year":"2017","journal-title":"Two Years of Pawn Storm"},{"key":"ref35","year":"2015","journal-title":"Operation RussianDoll Adobe & Windows Zero-Day Exploits Likely Leveraged by Russias APT28 in Highly-Targeted Attack Threat Research Blog"},{"key":"ref34","article-title":"Trend Micro Discovers New Adobe Flash Zero-Day Exploit Used in Malvertisements","author":"pi","year":"2015","journal-title":"Trendlabs security intelligence blog"},{"key":"ref28","author":"musch","year":"2018","journal-title":"Web-based Cryptojacking in the Wild"},{"key":"ref27","author":"kindlund","year":"2014","journal-title":"Operation SnowMan DeputyDog Actor Compromises US Veterans of Foreign Wars Website"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSPW.2018.00014"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1145\/1217935.1217938"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1016\/S1353-4858(11)70086-1"},{"key":"ref20","article-title":"Following the Trail of BlackTechs Cyber Espionage Campaigns","author":"bermejo","year":"2017","journal-title":"Trendlabs security intelligence blog"},{"key":"ref22","author":"wressnegger","year":"2015","journal-title":"Analyzing and detecting Flash-based malware using lightweight multi-path exploration"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-14971-4_13"},{"key":"ref24","article-title":"Hiding in Plain Sight","year":"2015","journal-title":"Security Reimagined"},{"key":"ref23","author":"raiu","year":"2013","journal-title":"The MiniDuke mystery PDF 0-day government spy assembler Ox29A micro backdoor"},{"key":"ref26","author":"moran","year":"2013","journal-title":"Operation ephemeral hydra Ie zero-day linked to deputydog uses diskless method"},{"key":"ref25","article-title":"Operation Hangover: Unveiling an Indian Cyberattack Infrastructure","author":"fagerland","year":"2013","journal-title":"Norman Shark AS"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1109\/PST.2018.8514167"},{"key":"ref51","doi-asserted-by":"publisher","DOI":"10.1109\/DSC.2018.00079"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1145\/3231053.3231076"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.3233\/JCS-980109"},{"key":"ref54","author":"andersen","year":"2014","journal-title":"Mining money with monero … and cpu vector intrinsics"},{"key":"ref53","year":"2018","journal-title":"WebAssembly Specification"},{"key":"ref52","author":"kharraz","year":"2019","journal-title":"Outguard Detecting In-Browser Covert Cryptocurrency Mining in the Wild"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2016.2516916"},{"key":"ref11","first-page":"29","article-title":"W32. stuxnet dossier","volume":"5","author":"falliere","year":"2011","journal-title":"White Paper Symantec Corp Security Response"},{"key":"ref40","year":"2013","journal-title":"The Icefog APT A Tale of Cloak and Three Daggers"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2011.67"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2011.115"},{"key":"ref14","author":"matrosov","year":"2010","journal-title":"Stuxnet Under the Microscope"},{"key":"ref15","year":"0","journal-title":"Symantec Security Response Whitepapers"},{"key":"ref16","author":"o'gorman","year":"2012","journal-title":"The Elderwood Project"},{"key":"ref17","article-title":"Exclusive: Hackers breached US defense contractors","author":"finkle","year":"0","journal-title":"Reuters"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1016\/S1361-3723(12)70007-6"},{"key":"ref19","doi-asserted-by":"crossref","first-page":"183","DOI":"10.3390\/info6020183","article-title":"The role of malware in reported cyber espionage: a review of the impact and mechanism","volume":"6","author":"wangen","year":"2015","journal-title":"Information"},{"key":"ref4","article-title":"A contextual anomaly detection approach to discover zero-day attacks","author":"ai eroud","year":"0","journal-title":"2012 International Conference on Cyber Security CyberSecurity"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1007\/s10207-016-0344-y"},{"key":"ref6","first-page":"15","article-title":"Hamsa: Fast signature generation for zero-day polymorphic worms with provable attack resilience","author":"li","year":"0","journal-title":"2006 IEEE Symposium on Security and Privacy (S&P'06)"},{"key":"ref5","author":"syversen","year":"0","journal-title":"Method and apparatus for defending against zero-day worm-based attacks"},{"key":"ref8","first-page":"573","article-title":"k-zero day safety: Measuring the security risk of networks against unknown attacks","author":"wang","year":"2010","journal-title":"European symposium on research in computer security"},{"key":"ref7","author":"shulman","year":"2010","journal-title":"Method and apparatus for high-speed detection and blocking of zero-day worm attacks"},{"key":"ref49","first-page":"18","article-title":"The other side of the coin: A framework for detecting and analyzing web-based cryptocurrency mining campaigns","author":"rauchberger","year":"0","journal-title":"Proceedings of International Conference on Availability Reliability and Security"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/SERE.2013.16"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1109\/IWIA.2006.18"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1016\/j.ins.2007.03.025"},{"key":"ref48","first-page":"70","article-title":"Digging into browser-based crypto mining","author":"rth","year":"0","journal-title":"Proceedings of the Internet Measurement Conference 2018"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1007\/11760191_35"},{"key":"ref42","author":"dan caselden","year":"2014","journal-title":"Ned Moran Operation GreedyWonk Multiple Economic and Foreign Policy Sites Compromised Serving Up Flash Zero-Day Exploit Threat Research Blog"},{"key":"ref41","author":"kindlund","year":"2015","journal-title":"CFR Watering Hole Attack Details Threat Research Blog"},{"key":"ref44","first-page":"329","article-title":"Ransomware in industrial control systems. What comes after Wannacry and Petya global attacks?","volume":"174","author":"branquinho","year":"2018","journal-title":"WIT Transactions on The Built Environment"},{"key":"ref43","author":"eng","year":"2015","journal-title":"Operation Clandestine Wolf Adobe Flash Zero-Day in APT3 Phishing Campaign Threat Research Blog"}],"event":{"name":"TENCON 2019 - 2019 IEEE Region 10 Conference (TENCON)","location":"Kochi, India","start":{"date-parts":[[2019,10,17]]},"end":{"date-parts":[[2019,10,20]]}},"container-title":["TENCON 2019 - 2019 IEEE Region 10 Conference (TENCON)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8910516\/8929228\/08929620.pdf?arnumber=8929620","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,7,19]],"date-time":"2022-07-19T20:20:55Z","timestamp":1658262055000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/8929620\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,10]]},"references-count":56,"URL":"https:\/\/doi.org\/10.1109\/tencon.2019.8929620","relation":{},"subject":[],"published":{"date-parts":[[2019,10]]}}}