{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,13]],"date-time":"2026-06-13T05:39:24Z","timestamp":1781329164011,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":23,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,4,15]],"date-time":"2024-04-15T00:00:00Z","timestamp":1713139200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","award":["2207008"],"award-info":[{"award-number":["2207008"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2024,4,15]]},"DOI":"10.1145\/3643991.3644883","type":"proceedings-article","created":{"date-parts":[[2024,7,2]],"date-time":"2024-07-02T13:05:13Z","timestamp":1719925513000},"page":"728-732","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":6,"title":["MalwareBench: Malware samples are not enough"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-2738-4118","authenticated-orcid":false,"given":"Nusrat","family":"Zahan","sequence":"first","affiliation":[{"name":"North Carolina State University, Raleigh, United States of America"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8408-1391","authenticated-orcid":false,"given":"Philipp","family":"Burckhardt","sequence":"additional","affiliation":[{"name":"Socket, Inc, Wilmington, DE, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0006-8771-2503","authenticated-orcid":false,"given":"Mikola","family":"Lysenko","sequence":"additional","affiliation":[{"name":"Socket, Inc, Wilmington, DE, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0007-1575-0890","authenticated-orcid":false,"given":"Feross","family":"Aboukhadijeh","sequence":"additional","affiliation":[{"name":"Socket, Inc, Wilmington, DE, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-3300-6540","authenticated-orcid":false,"given":"Laurie","family":"Williams","sequence":"additional","affiliation":[{"name":"North Carolina State University, Raleigh, United States of America"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2024,7,2]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2022. Socket Inc. Retrieved December 2 2023 from https:\/\/socket.dev\/"},{"key":"e_1_3_2_1_2_1","volume-title":"Protestware on the rise: Why developers are sabotaging their own code. Retrieved","author":"Sharma A.","year":"2023","unstructured":"Sharma A. 2022. Protestware on the rise: Why developers are sabotaging their own code. Retrieved December 2, 2023 from https:\/\/techcrunch.com\/2022\/07\/27\/protestware-code-sabotage\/"},{"key":"e_1_3_2_1_3_1","unstructured":"Lxyeternal Blue. 2023. PyPI Malregistry. https:\/\/github.com\/lxyeternal\/pypi_malregistry"},{"key":"e_1_3_2_1_4_1","unstructured":"DataDog. 2022. GuardDog. https:\/\/github.com\/datadog\/guarddog"},{"key":"e_1_3_2_1_5_1","unstructured":"DataDog. 2023. malicious-software-packages-dataset. https:\/\/github.com\/DataDog\/malicious-software-packages-dataset"},{"key":"e_1_3_2_1_6_1","volume-title":"Ryan Elder, Brendan Saltaformaggio, and Wenke Lee.","author":"Duan Ruian","year":"2020","unstructured":"Ruian Duan, Omar Alrawi, Ranjita Pai Kasturi, Ryan Elder, Brendan Saltaformaggio, and Wenke Lee. 2020. Towards measuring supply chain attacks on package managers for interpreted languages. arXiv preprint arXiv:2002.01139 (2020)."},{"key":"e_1_3_2_1_7_1","volume-title":"ENISA Threat Landscape","author":"ENISA.","year":"2022","unstructured":"ENISA. 2022. ENISA Threat Landscape 2022. Retrieved December 2, 2023 from https:\/\/www.enisa.europa.eu\/publications\/enisa-threat-landscape-2022"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","unstructured":"Zahan et al. 2023. MalwareBench. 10.5281\/zenodo.10573493","DOI":"10.5281\/zenodo.10573493"},{"key":"e_1_3_2_1_9_1","volume-title":"7 Top Trends in Cybersecurity for","author":"Firstbrook Peter","year":"2022","unstructured":"Peter Firstbrook. 2022. 7 Top Trends in Cybersecurity for 2022. Retrieved December 2, 2023 from https:\/\/www.gartner.com\/en\/articles\/7-top-trends-in-cybersecurity-for-2022"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/3605770.3625211"},{"key":"e_1_3_2_1_11_1","unstructured":"Sarah Gooding. 2023. How Socket Combats Insidious Typosquatting Supply Chain Attacks. https:\/\/socket.dev\/blog\/how-socket-combats-insidious-typosquatting-supply-chain-attacks"},{"key":"e_1_3_2_1_12_1","volume-title":"An Empirical Study of Malicious Code In PyPI Ecosystem. arXiv preprint arXiv:2309.11021","author":"Guo Wenbo","year":"2023","unstructured":"Wenbo Guo, Zhengzi Xu, Chengwei Liu, Cheng Huang, Yong Fang, and Yang Liu. 2023. An Empirical Study of Malicious Code In PyPI Ecosystem. arXiv preprint arXiv:2309.11021 (2023)."},{"key":"e_1_3_2_1_13_1","volume-title":"Executive Order on Improving the Nation's Cybersecurity. Retrieved","author":"House The White","year":"2023","unstructured":"The White House. 2021. Executive Order on Improving the Nation's Cybersecurity. Retrieved December 2, 2023 from https:\/\/www.whitehouse.gov\/briefing-room\/presidential-actions\/2021\/05\/12\/executive-order-on-improving-the-nations-cybersecurity\/"},{"key":"e_1_3_2_1_14_1","volume-title":"Open-Source Dataset of Malicious Software Packages. Retrieved","author":"Labs Datadog Security","year":"2023","unstructured":"Datadog Security Labs. 2023. Open-Source Dataset of Malicious Software Packages. Retrieved December 2, 2023 from https:\/\/github.com\/datadog\/malicious-software-packages-dataset"},{"key":"e_1_3_2_1_15_1","volume-title":"Nicola Ronzoni, Matias Martinez, and Olivier Barais.","author":"Ladisa Piergiorgio","year":"2023","unstructured":"Piergiorgio Ladisa, Serena Elisa Ponta, Nicola Ronzoni, Matias Martinez, and Olivier Barais. 2023. On the Feasibility of Cross-Language Detection of Malicious Packages in npm and PyPI. arXiv preprint arXiv:2310.09571 (2023)."},{"key":"e_1_3_2_1_16_1","volume-title":"Introducing Socket AI - ChatGPT-Powered Threat Analysis. Retrieved","author":"Lysenko Mikola","year":"2023","unstructured":"Mikola Lysenko. 2023. Introducing Socket AI - ChatGPT-Powered Threat Analysis. Retrieved December 2, 2023 from https:\/\/socket.dev\/blog\/introducing-socket-ai-chatgpt-powered-threat-analysis"},{"key":"e_1_3_2_1_17_1","volume-title":"Revision 1","author":"Nieles Dempsey K.","unstructured":"Dempsey K. Pillitteri V. Y. Nieles, M. [n. d.]. NIST Special Publication 800-12, Revision 1. National Institute of Standards & Technology ([n. d.])."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"crossref","unstructured":"Marc Ohm Henrik Plate Arnold Sykosch and Michael Meier. 2020. Backstabber's knife collection: A review of open source software supply chain attacks. (2020) 23--43.","DOI":"10.1007\/978-3-030-52683-2_2"},{"key":"e_1_3_2_1_19_1","unstructured":"Socket. 2023. Dependency Confusion. https:\/\/socket.dev\/glossary\/dependency-confusion"},{"key":"e_1_3_2_1_20_1","volume-title":"SmoothOperator Supply Chain Attack Targeting 3CX VOIP Desktop Client. https:\/\/socradar.io\/smoothoperator-supply-chain-attack-targeting-3cx-voip-desktop-client\/ Last accessed","year":"2023","unstructured":"SocRadar. 2023. SmoothOperator Supply Chain Attack Targeting 3CX VOIP Desktop Client. https:\/\/socradar.io\/smoothoperator-supply-chain-attack-targeting-3cx-voip-desktop-client\/ Last accessed December 2, 2023."},{"key":"e_1_3_2_1_21_1","unstructured":"Bill Toulas. 2023. NPM ecosystem at risk from \"Manifest Confusion\" attacks. https:\/\/www.bleepingcomputer.com\/news\/security\/npm-ecosystem-at-risk-from-manifest-confusion-attacks\/"},{"key":"e_1_3_2_1_22_1","volume-title":"Bad Snakes: Understanding and Improving Python Package Index Malware Scanning. In 2023 IEEE\/ACM 45th International Conference on Software Engineering (ICSE). IEEE, 499--511","author":"Vu Duc-Ly","year":"2023","unstructured":"Duc-Ly Vu, Zachary Newman, and John Speed Meyers. 2023. Bad Snakes: Understanding and Improving Python Package Index Malware Scanning. In 2023 IEEE\/ACM 45th International Conference on Software Engineering (ICSE). IEEE, 499--511."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/3510457.3513044"}],"event":{"name":"MSR '24: 21st International Conference on Mining Software Repositories","location":"Lisbon Portugal","acronym":"MSR '24","sponsor":["SIGSOFT ACM Special Interest Group on Software Engineering","IEEE CS"]},"container-title":["Proceedings of the 21st International Conference on Mining Software Repositories"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3643991.3644883","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3643991.3644883","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3643991.3644883","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T23:56:44Z","timestamp":1750291004000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3643991.3644883"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,4,15]]},"references-count":23,"alternative-id":["10.1145\/3643991.3644883","10.1145\/3643991"],"URL":"https:\/\/doi.org\/10.1145\/3643991.3644883","relation":{},"subject":[],"published":{"date-parts":[[2024,4,15]]},"assertion":[{"value":"2024-07-02","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}