{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:49:49Z","timestamp":1750308589936,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":24,"publisher":"ACM","license":[{"start":{"date-parts":[[2017,4,23]],"date-time":"2017-04-23T00:00:00Z","timestamp":1492905600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/501100002347","name":"Bundesministerium f\u00fcr Bildung und Forschung","doi-asserted-by":"publisher","award":["16KIS0534,16KIS0307"],"award-info":[{"award-number":["16KIS0534,16KIS0307"]}],"id":[{"id":"10.13039\/501100002347","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2017,4,23]]},"DOI":"10.1145\/3065913.3065921","type":"proceedings-article","created":{"date-parts":[[2017,4,10]],"date-time":"2017-04-10T12:27:28Z","timestamp":1491827248000},"page":"1-6","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["Looking Back on Three Years of Flash-based Malware"],"prefix":"10.1145","author":[{"given":"Christian","family":"Wressnegger","sequence":"first","affiliation":[{"name":"Institute of System Security, TU Braunschweig"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Konrad","family":"Rieck","sequence":"additional","affiliation":[{"name":"Institute of System Security, TU Braunschweig"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2017,4,23]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"HTML5 and open web standards. https:\/\/blogs.adobe.com\/conversations\/2015\/11\/flash-html5-and-open-web-standards.html, visited","author":"Systems Adobe","year":"2017","unstructured":"Adobe Systems . Flash , HTML5 and open web standards. https:\/\/blogs.adobe.com\/conversations\/2015\/11\/flash-html5-and-open-web-standards.html, visited March 2017 . Adobe Systems. Flash, HTML5 and open web standards. https:\/\/blogs.adobe.com\/conversations\/2015\/11\/flash-html5-and-open-web-standards.html, visited March 2017."},{"key":"e_1_3_2_1_2_1","unstructured":"Adobe Systems. Adobe Flash runtimes: Statistics. http:\/\/www.adobe.com\/products\/flashruntimes\/statistics.html visited March 2017.  Adobe Systems. Adobe Flash runtimes: Statistics. http:\/\/www.adobe.com\/products\/flashruntimes\/statistics.html visited March 2017."},{"key":"e_1_3_2_1_3_1","volume-title":"Flash","author":"Caselden D.","year":"2015","unstructured":"D. Caselden , C. Souffrant , and G. Jiang . Flash in 2015 . https:\/\/www.fireeye.com\/blog\/threat-research\/2015\/03\/flash_in_2015.html, visited March 2017. D. Caselden, C. Souffrant, and G. Jiang. Flash in 2015. https:\/\/www.fireeye.com\/blog\/threat-research\/2015\/03\/flash_in_2015.html, visited March 2017."},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2009.41"},{"key":"e_1_3_2_1_5_1","volume-title":"Dynamic instrumentation tool for adobe flash player built on intel pin. https:\/\/github.com\/F-Secure\/Sulo, visited","author":"Hirvonen T.","year":"2017","unstructured":"T. Hirvonen . Dynamic instrumentation tool for adobe flash player built on intel pin. https:\/\/github.com\/F-Secure\/Sulo, visited March 2017 . T. Hirvonen. Dynamic instrumentation tool for adobe flash player built on intel pin. https:\/\/github.com\/F-Secure\/Sulo, visited March 2017."},{"key":"e_1_3_2_1_6_1","unstructured":"HTTP Archive. http:\/\/www.httparchive.org.  HTTP Archive. http:\/\/www.httparchive.org."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-40667-1_8"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/2808769.2808780"},{"key":"e_1_3_2_1_9_1","unstructured":"KINDI Software. secureSWF: Protect encrypt and optimize swf flash. http:\/\/www.kindi.com visited March 2017.  KINDI Software. secureSWF: Protect encrypt and optimize swf flash. http:\/\/www.kindi.com visited March 2017."},{"key":"e_1_3_2_1_10_1","volume-title":"Flash and chrome. https:\/\/blog.google\/products\/chrome\/flash-and-chrome, visited","author":"LaForge A.","year":"2017","unstructured":"A. LaForge . Flash and chrome. https:\/\/blog.google\/products\/chrome\/flash-and-chrome, visited March 2017 . A. LaForge. Flash and chrome. https:\/\/blog.google\/products\/chrome\/flash-and-chrome, visited March 2017."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382267"},{"key":"e_1_3_2_1_12_1","volume-title":"Proc. of Black Hat USA","author":"Lindner F.","year":"2010","unstructured":"F. Lindner . Preventing Adobe Flash exploitation - Blitzableiter - a signature-less protection tool . In Proc. of Black Hat USA , 2010 . F. Lindner. Preventing Adobe Flash exploitation - Blitzableiter - a signature-less protection tool. In Proc. of Black Hat USA, 2010."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/948109.948149"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-25560-1_10"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-40667-1_7"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-08509-8_7"},{"key":"e_1_3_2_1_17_1","volume-title":"http:\/\/www.cvedetails.com, visited","author":"\u00d6zkan S.","year":"2017","unstructured":"S. \u00d6zkan . CVE Details . http:\/\/www.cvedetails.com, visited March 2017 . S. \u00d6zkan. CVE Details. http:\/\/www.cvedetails.com, visited March 2017."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-45719-2_11"},{"key":"e_1_3_2_1_19_1","unstructured":"SWFLock.com. SWFLock: Online encryption software for flash. http:\/\/www.swflock.com visited March 2017.  SWFLock.com. SWFLock: Online encryption software for flash. http:\/\/www.swflock.com visited March 2017."},{"key":"e_1_3_2_1_20_1","volume-title":"Inc.","author":"Holdings Trustwave","year":"2016","unstructured":"Trustwave Holdings , Inc. Trustwave global security report. Technical report, Trustwave Holdings , Inc. , 2016 . Trustwave Holdings, Inc. Trustwave global security report. Technical report, Trustwave Holdings, Inc., 2016."},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-33338-5_14"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-40667-1_6"},{"key":"e_1_3_2_1_23_1","unstructured":"Yushi High Technology Ltd. DoSWF -- professional flash swf encryptor. http:\/\/doswf.org visited March 2017.  Yushi High Technology Ltd. DoSWF -- professional flash swf encryptor. http:\/\/doswf.org visited March 2017."},{"key":"e_1_3_2_1_24_1","volume-title":"New Flash Player 0-day (CVE-2014-0515) Used in Watering-hole Attacks. https:\/\/securelist.com\/blog\/incidents\/59399\/new-flash-player-0-daycve-2014-0515-used-in-watering-hole-attacks\/, visited","author":"Zakorzhevsky V.","year":"2017","unstructured":"V. Zakorzhevsky . New Flash Player 0-day (CVE-2014-0515) Used in Watering-hole Attacks. https:\/\/securelist.com\/blog\/incidents\/59399\/new-flash-player-0-daycve-2014-0515-used-in-watering-hole-attacks\/, visited March 2017 . V. Zakorzhevsky. New Flash Player 0-day (CVE-2014-0515) Used in Watering-hole Attacks. https:\/\/securelist.com\/blog\/incidents\/59399\/new-flash-player-0-daycve-2014-0515-used-in-watering-hole-attacks\/, visited March 2017."}],"event":{"name":"EuroSys '17: Twelfth EuroSys Conference 2017","sponsor":["SIGOPS ACM Special Interest Group on Operating Systems"],"location":"Belgrade Serbia","acronym":"EuroSys '17"},"container-title":["Proceedings of the 10th European Workshop on Systems Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3065913.3065921","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3065913.3065921","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T19:05:20Z","timestamp":1750273520000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3065913.3065921"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,4,23]]},"references-count":24,"alternative-id":["10.1145\/3065913.3065921","10.1145\/3065913"],"URL":"https:\/\/doi.org\/10.1145\/3065913.3065921","relation":{},"subject":[],"published":{"date-parts":[[2017,4,23]]},"assertion":[{"value":"2017-04-23","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}