Title: Dynamic malware analysis kernel and user-level calls - dataset
Citation
Matthew Nunes (2019). Dynamic malware analysis kernel and user-level calls - dataset. Cardiff University. http://doi.org/10.17035/d.2019.0082395337
Access Rights: Data is provided under a Creative Commons Attribution (CC BY 4.0) licence
Access Method: Click to email a request for this data to opendata@cardiff.ac.uk
Dataset Details
Publisher: Cardiff University
Date (year) of data becoming publicly available: 2019
Data format: .json, .txt
Estimated total storage size of dataset: Less than 1 petabyte
Number of Files In Dataset: 1428225
DOI : 10.17035/d.2019.0082395337
DOI URL: http://doi.org/10.17035/d.2019.0082395337
This dataset consists of all the API calls gathered for the paper titled "Getting to the root of the problem: A detailed comparison of kernel and user level data for dynamic malware analysis". The Cuckoo data provided is the standard data the Cuckoo returns after each analysis, the main element used from the data returned was the API stats in report.json. The kernel data is global system call data (all system calls made by all processes running on the system at the time). For each analysis a text file is created for every system call monitored. Everytime that call is used, a line is appended to the text file mentioning the time the call was made amongst a few other details (depending on the call). Research results based upon these data are published at https://doi.org/10.1016/j.jisa.2019.102365
Description
Keywords
Dynamic Malware Analysis
Related Projects
- Measuring the utility of Kernel and User level data for Dynamic Malware Analysis (01/10/2015 - 30/09/2019)
