A master thesis from Aalborg University
Malware analysis environment with the use of Elastic Stack
Author(s)
Term
4. semester
Education
Publication year
2024
Submitted on
2024-05-30
Pages
56 pages
Abstract
As malware evasion and obfuscation techniques become more powerful, sandboxing, the current workhorse for dynamic malware analysis, becomes time-consuming when confronted with specific malware. In this thesis, we discuss an alternative approach to dynamic malware analysis that is different from sandboxing, i.e., using Elastic Stack to perform dynamic analysis. This is done by installing and running Elasticsearch, Kibana and integrations, then running real malwares to collect data, and finally using a graphical interface to perform in-depth analysis of the malware's behaviour. This thesis finally summarises some methods as well as examples for determining malware behaviour and more importantly describes the detailed steps for analysis using Elastic Stack.
Keywords
Documents
Colophon: This page is part of the AAU Student Projects portal, which is run by Aalborg University. Here, you can find and download publicly available bachelor's theses and master's projects from across the university dating from 2008 onwards. Student projects from before 2008 are available in printed form at Aalborg University Library.
If you have any questions about AAU Student Projects or the research registration, dissemination and analysis at Aalborg University, please feel free to contact the VBN team. You can also find more information in the AAU Student Projects FAQs.