{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,24]],"date-time":"2026-04-24T15:02:06Z","timestamp":1777042926246,"version":"3.51.4"},"publisher-location":"New York, NY, USA","reference-count":32,"publisher":"ACM","license":[{"start":{"date-parts":[[2014,11,7]],"date-time":"2014-11-07T00:00:00Z","timestamp":1415318400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"Regional Administration of Sardinia (RAS) Italy","award":["CRP-17555"],"award-info":[{"award-number":["CRP-17555"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2014,11,7]]},"DOI":"10.1145\/2666652.2666657","type":"proceedings-article","created":{"date-parts":[[2014,11,7]],"date-time":"2014-11-07T17:10:54Z","timestamp":1415380254000},"page":"47-57","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":49,"title":["Lux0R"],"prefix":"10.1145","author":[{"given":"Igino","family":"Corona","sequence":"first","affiliation":[{"name":"University of Cagliari, Cagliari, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Davide","family":"Maiorca","sequence":"additional","affiliation":[{"name":"University of Cagliari, Cagliari, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Davide","family":"Ariu","sequence":"additional","affiliation":[{"name":"University of Cagliari, Cagliari, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Giorgio","family":"Giacinto","sequence":"additional","affiliation":[{"name":"University of Cagliari, Cagliari, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2014,11,7]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"JavaScript for Acrobat API Reference. Http:\/\/www.adobe.com\/content\/dam\/Adobe\/en\/devnet\/acrobat\/pdfs\/js_api_reference.pdf - Last visited","author":"Adobe Systems Inc.","year":"2013","unstructured":"Adobe Systems Inc. JavaScript for Acrobat API Reference. Http:\/\/www.adobe.com\/content\/dam\/Adobe\/en\/devnet\/acrobat\/pdfs\/js_api_reference.pdf - Last visited December 6, 2013 , April 2007. Adobe Systems Inc. JavaScript for Acrobat API Reference. Http:\/\/www.adobe.com\/content\/dam\/Adobe\/en\/devnet\/acrobat\/pdfs\/js_api_reference.pdf - Last visited December 6, 2013, April 2007."},{"key":"e_1_3_2_1_2_1","volume-title":"March","author":"Albertini A.","year":"2013","unstructured":"A. Albertini . Pdftricks: a summary of pdf tricks - encodings, structures, javascript. https:\/\/code.google.com\/p\/corkami\/wiki\/PDFTricks , March 2013 . Corkami Wiki . A. Albertini. Pdftricks: a summary of pdf tricks - encodings, structures, javascript. https:\/\/code.google.com\/p\/corkami\/wiki\/PDFTricks, March 2013. Corkami Wiki."},{"key":"e_1_3_2_1_3_1","volume-title":"European Conference on Machine Learning and Principles and Practice of Knowledge Discovery in Databases (ECML PKDD), Part III. Springer-Verlag Berlin Heidelberg","author":"Biggio B.","year":"2013","unstructured":"B. Biggio , I. Corona , D. Maiorca , B. Nelson , N. Srndic , P. Laskov , G. Giacinto , and F. Roli . Evasion attacks against machine learning at test time. In H. Blockeel, editor , European Conference on Machine Learning and Principles and Practice of Knowledge Discovery in Databases (ECML PKDD), Part III. Springer-Verlag Berlin Heidelberg , 2013 . B. Biggio, I. Corona, D. Maiorca, B. Nelson, N. Srndic, P. Laskov, G. Giacinto, and F. Roli. Evasion attacks against machine learning at test time. In H. Blockeel, editor, European Conference on Machine Learning and Principles and Practice of Knowledge Discovery in Databases (ECML PKDD), Part III. Springer-Verlag Berlin Heidelberg, 2013."},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-02300-7_4"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/TKDE.2013.57"},{"key":"e_1_3_2_1_6_1","volume-title":"Poisoning attacks against support vector machines","author":"Biggio B.","year":"2012","unstructured":"B. Biggio , B. Nelson , and P. Laskov . Poisoning attacks against support vector machines . In J. Langford and J. Pineau, editors, 29th Int'l Conf. on Machine Learning. Omnipress , 2012 . B. Biggio, B. Nelson, and P. Laskov. Poisoning attacks against support vector machines. In J. Langford and J. Pineau, editors, 29th Int'l Conf. on Machine Learning. Omnipress, 2012."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/1963405.1963436"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/1772690.1772720"},{"key":"e_1_3_2_1_9_1","volume-title":"Proceedings of the 20th USENIX Conference on Security, SEC'11","author":"Curtsinger C.","year":"2011","unstructured":"C. Curtsinger , B. Livshits , B. Zorn , and C. Seifert . Zozzle: Fast and precise in-browser javascript malware detection . In Proceedings of the 20th USENIX Conference on Security, SEC'11 , Berkeley, CA, USA , 2011 . USENIX Association. C. Curtsinger, B. Livshits, B. Zorn, and C. Seifert. Zozzle: Fast and precise in-browser javascript malware detection. In Proceedings of the 20th USENIX Conference on Security, SEC'11, Berkeley, CA, USA, 2011. USENIX Association."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/2089125.2089126"},{"key":"e_1_3_2_1_11_1","volume-title":"Virus Bulletin","author":"Engleberth M.","year":"2009","unstructured":"M. Engleberth , C. Willems , and T. Holz . Detecting malicious documents with combined static and dynamic analysis. Technical report , Virus Bulletin , 2009 . M. Engleberth, C. Willems, and T. Holz. Detecting malicious documents with combined static and dynamic analysis. Technical report, Virus Bulletin, 2009."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-23644-0_15"},{"key":"e_1_3_2_1_13_1","volume-title":"December","author":"G. Inc. Virustotal.","year":"2013","unstructured":"G. Inc. Virustotal. http:\/\/www.virustotal.com , December 2013 . G. Inc. Virustotal. http:\/\/www.virustotal.com, December 2013."},{"key":"e_1_3_2_1_14_1","volume-title":"December","author":"Wepawet Sec","year":"2013","unstructured":"i Sec lab. Wepawet . http:\/\/wepawet.cs.ucsb.edu , December 2013 . iSec lab. Wepawet. http:\/\/wepawet.cs.ucsb.edu, December 2013."},{"key":"e_1_3_2_1_16_1","first-page":"637","volume-title":"Proceedings of the 22Nd USENIX Conference on Security, SEC'13","author":"Kapravelos A.","year":"2013","unstructured":"A. Kapravelos , Y. Shoshitaishvili , M. Cova , C. Kruegel , and G. Vigna . Revolver: An automated approach to the detection of evasiveweb-based malware . In Proceedings of the 22Nd USENIX Conference on Security, SEC'13 , pages 637 -- 652 , Berkeley, CA, USA , 2013 . USENI Association. A. Kapravelos, Y. Shoshitaishvili, M. Cova, C. Kruegel, and G. Vigna. Revolver: An automated approach to the detection of evasiveweb-based malware. In Proceedings of the 22Nd USENIX Conference on Security, SEC'13, pages 637--652, Berkeley, CA, USA, 2013. USENI Association."},{"key":"e_1_3_2_1_17_1","unstructured":"Kaspersky Lab. Kaspersky lab identifies \u00d4miniduke \u00d5 a new malicious program designed for spying on multiple government entities and institutions across the world. http:\/\/www.kaspersky.com\/about\/news\/virus\/2013\/Kaspersky_Lab_Identifies_MiniDuke_a_New_Malicious_Program_Designed_for_Spying_on_Multiple_Government_Entities_and_Institutions_Across_the_World February 2013.  Kaspersky Lab. Kaspersky lab identifies \u00d4miniduke \u00d5 a new malicious program designed for spying on multiple government entities and institutions across the world. http:\/\/www.kaspersky.com\/about\/news\/virus\/2013\/Kaspersky_Lab_Identifies_MiniDuke_a_New_Malicious_Program_Designed_for_Spying_on_Multiple_Government_Entities_and_Institutions_Across_the_World February 2013."},{"key":"e_1_3_2_1_18_1","first-page":"1137","volume-title":"Proceedings of the 14th International Joint Conference on Artificial Intelligence -","volume":"2","author":"Kohavi R.","year":"1995","unstructured":"R. Kohavi . A study of cross-validation and bootstrap for accuracy estimation and model selection . In Proceedings of the 14th International Joint Conference on Artificial Intelligence - Volume 2 , IJCAI'95, pages 1137 -- 1143 , San Francisco, CA, USA , 1995 . Morgan Kaufmann Publishers Inc. R. Kohavi. A study of cross-validation and bootstrap for accuracy estimation and model selection. In Proceedings of the 14th International Joint Conference on Artificial Intelligence - Volume 2, IJCAI'95, pages 1137--1143, San Francisco, CA, USA, 1995. Morgan Kaufmann Publishers Inc."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/2076732.2076785"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1109\/MALWARE.2009.5403020"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/2484313.2484327"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-31537-4_40"},{"key":"e_1_3_2_1_23_1","unstructured":"MITRE. Common vulnerabilities and exposures. http:\/\/cve.mitre.org December 2013.  MITRE. Common vulnerabilities and exposures. http:\/\/cve.mitre.org December 2013."},{"key":"e_1_3_2_1_24_1","volume-title":"December","author":"Network Mozilla Developer","year":"2013","unstructured":"Mozilla Developer Network . JavaScript Language Resources. https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/JavaScript\/Language_Resources , December 2013 . Mozilla Developer Network. JavaScript Language Resources. https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/JavaScript\/Language_Resources, December 2013."},{"key":"e_1_3_2_1_25_1","volume-title":"December","author":"Network Mozilla Developer","year":"2013","unstructured":"Mozilla Developer Network . Rhino. https:\/\/developer.mozilla.org\/en-US\/docs\/Rhino , December 2013 . Mozilla Developer Network. Rhino. https:\/\/developer.mozilla.org\/en-US\/docs\/Rhino, December 2013."},{"key":"e_1_3_2_1_26_1","volume-title":"December","author":"Network M. D.","year":"2013","unstructured":"M. D. Network . SpiderMonkey. https:\/\/developer.mozilla.org\/en-US\/docs\/Mozilla\/Projects\/SpiderMonkey , December 2013 . M. D. Network. SpiderMonkey. https:\/\/developer.mozilla.org\/en-US\/docs\/Mozilla\/Projects\/SpiderMonkey, December 2013."},{"key":"e_1_3_2_1_27_1","first-page":"169","volume-title":"Proc. of the 18th Conference on USENIX Security Symposium, SSYM'09","author":"Ratanaworabhan P.","year":"2009","unstructured":"P. Ratanaworabhan , B. Livshits , and B. Zorn . Nozzle: A defense against heap-spraying code injection attacks . In Proc. of the 18th Conference on USENIX Security Symposium, SSYM'09 , pages 169 -- 186 , Berkeley, CA, USA , 2009 . USENIX Association. P. Ratanaworabhan, B. Livshits, and B. Zorn. Nozzle: A defense against heap-spraying code injection attacks. In Proc. of the 18th Conference on USENIX Security Symposium, SSYM'09, pages 169--186, Berkeley, CA, USA, 2009. USENIX Association."},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/1920261.1920267"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/2381896.2381901"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/2420950.2420987"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/1972551.1972555"},{"key":"e_1_3_2_1_32_1","volume-title":"Proceedings of the 20th Annual Network & Distributed System Security Symposium","author":"\u0160rndi\u0107 N.","year":"2013","unstructured":"N. \u0160rndi\u0107 and P. Laskov . Detection of malicious pdf files based on hierarchical document structure . In Proceedings of the 20th Annual Network & Distributed System Security Symposium , 2013 . N. \u0160rndi\u0107 and P. Laskov. Detection of malicious pdf files based on hierarchical document structure. In Proceedings of the 20th Annual Network & Distributed System Security Symposium, 2013."},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/2435349.2435364"}],"event":{"name":"CCS'14: 2014 ACM SIGSAC Conference on Computer and Communications Security","location":"Scottsdale Arizona USA","acronym":"CCS'14","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2014 Workshop on Artificial Intelligent and Security Workshop"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2666652.2666657","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2666652.2666657","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T06:12:15Z","timestamp":1750227135000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2666652.2666657"}},"subtitle":["Detection of Malicious PDF-embedded JavaScript code through Discriminant Analysis of API References"],"short-title":[],"issued":{"date-parts":[[2014,11,7]]},"references-count":32,"alternative-id":["10.1145\/2666652.2666657","10.1145\/2666652"],"URL":"https:\/\/doi.org\/10.1145\/2666652.2666657","relation":{},"subject":[],"published":{"date-parts":[[2014,11,7]]},"assertion":[{"value":"2014-11-07","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}