{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,4]],"date-time":"2026-06-04T16:02:48Z","timestamp":1780588968672,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":52,"publisher":"ACM","license":[{"start":{"date-parts":[[2026,6,1]],"date-time":"2026-06-01T00:00:00Z","timestamp":1780272000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"DOI":"10.13039\/501100001659","name":"Deutsche Forschungsgemeinschaft","doi-asserted-by":"publisher","award":["492020528"],"award-info":[{"award-number":["492020528"]}],"id":[{"id":"10.13039\/501100001659","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100000781","name":"European Research Council","doi-asserted-by":"publisher","award":["101043410"],"award-info":[{"award-number":["101043410"]}],"id":[{"id":"10.13039\/501100000781","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2026,6]]},"DOI":"10.1145\/3779208.3807485","type":"proceedings-article","created":{"date-parts":[[2026,6,4]],"date-time":"2026-06-04T15:21:58Z","timestamp":1780586518000},"page":"456-471","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Shape-Shifting Malicious Code in Software Backdoors via Language Models"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0001-4435-0534","authenticated-orcid":false,"given":"Mohammad Ebrahimi","family":"Fard","sequence":"first","affiliation":[{"name":"BIFOLD &amp; TU Berlin, Berlin, Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0001-2631-9031","authenticated-orcid":false,"given":"Felix","family":"Weissberg","sequence":"additional","affiliation":[{"name":"BIFOLD &amp; TU Berlin, Berlin, Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0003-2854-6419","authenticated-orcid":false,"given":"Erik","family":"Imgrund","sequence":"additional","affiliation":[{"name":"BIFOLD &amp; TU Berlin, Berlin, Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4706-260X","authenticated-orcid":false,"given":"Thorsten","family":"Eisenhofer","sequence":"additional","affiliation":[{"name":"CISPA Helmholtz Center for Information Security, Saarbr\u00fccken, Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5054-8758","authenticated-orcid":false,"given":"Konrad","family":"Rieck","sequence":"additional","affiliation":[{"name":"BIFOLD &amp; TU Berlin, Berlin, Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2026,6,4]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/3517208.3523753"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/319709.319710"},{"key":"e_1_3_2_1_3_1","volume-title":"Proc. of the International Conference on Learning Representations (ICLR)","author":"Bao G.","year":"2024","unstructured":"G. Bao, Y. Zhao, Z. Teng, L. Yang, and Y. Zhang. Fast-DetectGPT: Efficient Zero-Shot Detection of Machine-Generated Text via Conditional Probability Curvature. In Proc. of the International Conference on Learning Representations (ICLR), 2024."},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-13841-1_22"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/3591300"},{"key":"e_1_3_2_1_6_1","author":"Cao Y.","year":"2024","unstructured":"Y. Cao, Z. Zhou, C. Chakraborty, M. Wang, Q. M. J. Wu, X. Sun, and K. Yu. Generative Steganography Based on Long Readable Text Generation. IEEE Transactions on Computational Social Systems, 2024.","journal-title":"Generative Steganography Based on Long Readable Text Generation. IEEE Transactions on Computational Social Systems"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP46214.2022.9833649"},{"key":"e_1_3_2_1_8_1","volume-title":"Blog Post, 2021","author":"Team Codecov Security","year":"2025","unstructured":"Codecov Security Team. Bash Uploader Security Update. Blog Post, 2021. Accessed: December 2025."},{"key":"e_1_3_2_1_9_1","volume-title":"Blog Post, 2024","author":"Coldwind G.","year":"2025","unstructured":"G. Coldwind. xz\/liblzma: Bash-Stage Obfuscation Explained. Blog Post, 2024. Accessed: December 2025."},{"key":"e_1_3_2_1_10_1","volume-title":"Surreptitious Software: Obfuscation, Watermarking, and Tamperproofing for Software Protection","author":"Collberg C.","year":"2009","unstructured":"C. Collberg and J. Nagra. Surreptitious Software: Obfuscation, Watermarking, and Tamperproofing for Software Protection. Addison-Wesley, 2009."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.10"},{"key":"e_1_3_2_1_12_1","volume-title":"Bypassing msb data filters for buffer overflow exploits on intel platforms. Websites","author":"Eller R.","year":"2025","unstructured":"R. Eller. Bypassing msb data filters for buffer overflow exploits on intel platforms. Websites. Accessed: December 2025."},{"key":"e_1_3_2_1_13_1","volume-title":"Website, 2019","author":"Fisher D.","year":"2025","unstructured":"D. Fisher. Backdoor found in webmin utility. Website, 2019. Accessed: December 2025."},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/1180405.1180414"},{"key":"e_1_3_2_1_15_1","volume-title":"Proc. of the USENIX Security Symposium","author":"Fogla P.","year":"2006","unstructured":"P. Fogla, M. I. Sharif, R. Perdisci, O. M. Kolesnikov, and W. Lee. Polymorphic Blending Attacks. In Proc. of the USENIX Security Symposium, 2006."},{"key":"e_1_3_2_1_16_1","volume-title":"Website, 2024","author":"Freund A.","year":"2025","unstructured":"A. Freund. Backdoor in Upstream XZ\/liblzma leading to SSH server compromise. Website, 2024. Accessed: December 2025."},{"key":"e_1_3_2_1_17_1","volume-title":"The pile: An 800GB Dataset of Diverse Text for Language Modeling. arXiv preprint arXiv:2101.00027","author":"Gao L.","year":"2020","unstructured":"L. Gao, S. Biderman, S. Black, L. Golding, T. Hoppe, C. Foster, J. Phang, H. He, A. Thite, N. Nabeshima, et al. The pile: An 800GB Dataset of Diverse Text for Language Modeling. arXiv preprint arXiv:2101.00027, 2020."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.18653\/v1\/2023.emnlp-main.674"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1109\/CC.2016.7563724"},{"key":"e_1_3_2_1_20_1","author":"G\u00e9czi Z.","year":"2018","unstructured":"Z. G\u00e9czi and P. Iv\u00e1nyi. Automatic Translation of Assembly Shellcodes to Printable Byte Codes. An International Journal for Engineering and Information Sciences, 2018.","journal-title":"An International Journal for Engineering and Information Sciences"},{"key":"e_1_3_2_1_21_1","volume-title":"Proc. of the International Conference on Machine Learning (ICML)","author":"Hans A.","year":"2024","unstructured":"A. Hans, A. Schwarzschild, V. Cherepanova, H. Kazemi, A. Saha, M. Goldblum, J. Geiping, and T. Goldstein. Spotting LLMs With Binoculars: Zero-Shot Detection of Machine-Generated Text. In Proc. of the International Conference on Machine Learning (ICML), 2024."},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.18653\/v1\/N19-1090"},{"key":"e_1_3_2_1_23_1","volume-title":"A. Oh","author":"Hu X.","year":"2023","unstructured":"X. Hu, P. Chen, and T. Ho. RADAR: Robust AI-Text Detection via Adversarial Learning. In A. Oh, T. Naumann, A. Globerson, K. Saenko, M. Hardt, and S. Levine, editors, Advances in Neural Information Processing Systems (NeurIPS), 2023."},{"key":"e_1_3_2_1_24_1","volume-title":"Base32, and Base64 Data Encodings. RFC","author":"Josefsson S.","year":"2006","unstructured":"S. Josefsson. The Base16, Base32, and Base64 Data Encodings. RFC, 2006."},{"key":"e_1_3_2_1_25_1","volume-title":"Department of Homeland Security","author":"Kenneally E.","year":"2012","unstructured":"E. Kenneally and D. Dittrich. The Menlo Report: Ethical Principles Guiding Information and Communication Technology Research. Technical report, U.S. Department of Homeland Security, 2012."},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP46215.2023.10179304"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.24963\/ijcai.2020\/502"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/3711896.3737408"},{"key":"e_1_3_2_1_29_1","volume-title":"English Shellcode. In Proc. of the ACM Conference on Computer and Communications Security(CCS)","author":"Mason J.","year":"2009","unstructured":"J. Mason, S. Small, F. Monrose, and G. MacManus. English Shellcode. In Proc. of the ACM Conference on Computer and Communications Security(CCS), 2009."},{"key":"e_1_3_2_1_30_1","volume-title":"PDF","year":"2012","unstructured":"Metaexploit. Shikata ga nai encoder. PDF, 2012."},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-52683-2_2"},{"key":"e_1_3_2_1_32_1","volume-title":"Blog Post, 2001","author":"R.","year":"2025","unstructured":"R. or Phrack Staff. Writing IA32 Alphanumeric Shellcodes. Blog Post, 2001. Accessed: December 2025."},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.5555\/3488877.3488879"},{"key":"e_1_3_2_1_34_1","volume-title":"News Web, 2021","author":"Popov N.","year":"2025","unstructured":"N. Popov. PHP Backdoor: Changes to Git Commit Workflow. News Web, 2021. Accessed: December 2025."},{"key":"e_1_3_2_1_35_1","volume-title":"Proc. of the USENIX Security Symposium","author":"Schloegel M.","year":"2022","unstructured":"M. Schloegel, T. Blazytko, M. Contag, C. Aschermann, J. Basler, T. Holz, and A. Abbasi. Loki: Hardening Code Obfuscation Against Automated Attacks. In Proc. of the USENIX Security Symposium, 2022."},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516716"},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2015.23294"},{"key":"e_1_3_2_1_38_1","volume-title":"Studying Minified and Obfuscated Code in the Web. In Proc. of the International World Wide Web Conference (WWW)","author":"Skolka P.","year":"2019","unstructured":"P. Skolka, C.-A. Staicu, and M. Pradel. Anything to Hide? Studying Minified and Obfuscated Code in the Web. In Proc. of the International World Wide Web Conference (WWW), 2019."},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1145\/1315245.1315312"},{"key":"e_1_3_2_1_40_1","volume-title":"Accessed","author":"Srivastava A.","year":"2018","unstructured":"A. Srivastava. Linux\/x86 execve(\/bin\/sh) Shellcode. Exploit PoC, 2018. Accessed: December 2025."},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1145\/3664476.3670930"},{"key":"e_1_3_2_1_42_1","volume-title":"A Snyk's Post-Mortem of the Malicious Event-Stream NPM Package Backdoor. Blog post","author":"Tal L.","year":"2018","unstructured":"L. Tal. A Snyk's Post-Mortem of the Malicious Event-Stream NPM Package Backdoor. Blog post, 2018. Accessed: December 2025."},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1145\/358198.358210"},{"key":"e_1_3_2_1_44_1","volume-title":"Website","author":"Tian E.","year":"2023","unstructured":"E. Tian, A. Cui, and A. Adam. Gptzero: Towards detection of ai-generated text using zero-shot and supervised methods. Website, 2023."},{"key":"e_1_3_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.18653\/v1\/2025.findings-acl.177"},{"key":"e_1_3_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.46"},{"key":"e_1_3_2_1_47_1","volume-title":"Blog post","author":"Wever B.-J.","year":"2004","unstructured":"B.-J. Wever. Writing ia32 restricted instruction set shellcode decoder loops. Blog post, 2004. Accessed: December 2025."},{"key":"e_1_3_2_1_48_1","volume-title":"Shellcodes database entry","author":"Willis R.","year":"2013","unstructured":"R. Willis. Linux\/x86 TCP Bind Shellcode. Shellcodes database entry, 2013. Accessed: December 2025."},{"key":"e_1_3_2_1_49_1","volume-title":"Shellcodes database entry","author":"Willis R.","year":"2013","unstructured":"R. Willis. Linux\/x86 Reverse TCP Bind Shellcode. Shellcodes database entry, 2013. Accessed: December 2025."},{"key":"e_1_3_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1145\/3664647.3680562"},{"key":"e_1_3_2_1_51_1","volume-title":"Proc. of the USENIX Security Symposium","author":"Zhang Y.","year":"2000","unstructured":"Y. Zhang and V. Paxson. Detecting backdoors. In Proc. of the USENIX Security Symposium, 2000."},{"key":"e_1_3_2_1_52_1","doi-asserted-by":"publisher","DOI":"10.18653\/v1\/D19-1115"}],"event":{"name":"ASIA CCS '26: ACM Asia Conference on Computer and Communications Security","location":"Bangalore India","acronym":"ASIA CCS '26","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the ACM Asia Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3779208.3807485","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,6,4]],"date-time":"2026-06-04T15:29:04Z","timestamp":1780586944000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3779208.3807485"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,6]]},"references-count":52,"alternative-id":["10.1145\/3779208.3807485","10.1145\/3779208"],"URL":"https:\/\/doi.org\/10.1145\/3779208.3807485","relation":{},"subject":[],"published":{"date-parts":[[2026,6]]},"assertion":[{"value":"2026-06-04","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}