摘要
变形病毒将成为未来计算机病毒发展的趋势,研究病毒的变形技术及变形引擎十分必要。在概括病毒变形技术的原理和发展的基础上,分析了变形引擎的基本结构和流程,给出了一种变形引擎的具体实现方法,并详细介绍了其中各模块的功能和算法,同时也对其中涉及到的指令剥离、指令相关性分析以及随机数生成等关键技术的实现进行了讨论,最后对通过该引擎变形后病毒的抗查杀能力进行了测试。
Metamorphic virus will be the trend in development ofcomputer virus in the future. It is necessary to research the metamorphic technology and metamorphic engine ofvirus. The metamorphic theory and development ofcomputer virus is generalized, then thebasic structure and flow are analyzed, the detailed design of two metamorphic engines is brought forward, and the function and arithmetic of every module is introduced in those engines detailedly. It also makes a discuss on the key technology that must be resolved in the implementationofmetamorphicengine, including instruction uncovered technique, instruction dependency parsing technique and generation of random number. At last, it makes a test On virus' ability of opposing detection of anti-virus software after metamorphosing.
出处
《计算机工程与设计》
CSCD
北大核心
2009年第2期314-317,共4页
Computer Engineering and Design
关键词
病毒
多态
变形
变形引擎
指令剥离
virus
polymiorphism
metamorphose
metamorphic engines
instruction uncovertechnique
