{"id":"https://openalex.org/W2291453839","doi":"https://doi.org/10.1109/malware.2015.7413686","title":"Sandboxing and reasoning on malware infection trees","display_name":"Sandboxing and reasoning on malware infection trees","publication_year":2015,"publication_date":"2015-10-01","ids":{"openalex":"https://openalex.org/W2291453839","doi":"https://doi.org/10.1109/malware.2015.7413686","mag":"2291453839"},"language":"en","primary_location":{"id":"doi:10.1109/malware.2015.7413686","is_oa":false,"landing_page_url":"https://doi.org/10.1109/malware.2015.7413686","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2015 10th International Conference on Malicious and Unwanted Software (MALWARE)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5101771002","display_name":"Krishnendu Ghosh","orcid":"https://orcid.org/0000-0002-8471-6537"},"institutions":[{"id":"https://openalex.org/I83328450","display_name":"Miami University","ror":"https://ror.org/05nbqxr67","country_code":"US","type":"education","lineage":["https://openalex.org/I83328450"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Krishnendu Ghosh","raw_affiliation_strings":["Dept. of Comp. & Info. Tech., Miami University, Hamilton, OH, USA"],"affiliations":[{"raw_affiliation_string":"Dept. of Comp. & Info. Tech., Miami University, Hamilton, OH, USA","institution_ids":["https://openalex.org/I83328450"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5048340882","display_name":"Jose Andre Morales","orcid":"https://orcid.org/0000-0001-7177-8192"},"institutions":[{"id":"https://openalex.org/I114772536","display_name":"Software Engineering Institute","ror":"https://ror.org/01xqjjn94","country_code":"US","type":"facility","lineage":["https://openalex.org/I114772536","https://openalex.org/I74973139"]},{"id":"https://openalex.org/I74973139","display_name":"Carnegie Mellon University","ror":"https://ror.org/05x2bcf33","country_code":"US","type":"education","lineage":["https://openalex.org/I74973139"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Jose Andre Morales","raw_affiliation_strings":["Software Engineering Institute, Carnegie Mellon University, Pittsburgh, PA, USA"],"affiliations":[{"raw_affiliation_string":"Software Engineering Institute, Carnegie Mellon University, Pittsburgh, PA, USA","institution_ids":["https://openalex.org/I114772536","https://openalex.org/I74973139"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5063254632","display_name":"William Casey","orcid":"https://orcid.org/0000-0001-7718-7385"},"institutions":[{"id":"https://openalex.org/I74973139","display_name":"Carnegie Mellon University","ror":"https://ror.org/05x2bcf33","country_code":"US","type":"education","lineage":["https://openalex.org/I74973139"]},{"id":"https://openalex.org/I114772536","display_name":"Software Engineering Institute","ror":"https://ror.org/01xqjjn94","country_code":"US","type":"facility","lineage":["https://openalex.org/I114772536","https://openalex.org/I74973139"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"William Casey","raw_affiliation_strings":["Software Engineering Institute, Carnegie Mellon University, Pittsburgh, PA, USA"],"affiliations":[{"raw_affiliation_string":"Software Engineering Institute, Carnegie Mellon University, Pittsburgh, PA, USA","institution_ids":["https://openalex.org/I114772536","https://openalex.org/I74973139"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5053379558","display_name":"Bud Mishra","orcid":null},"institutions":[{"id":"https://openalex.org/I36672615","display_name":"Courant Institute of Mathematical Sciences","ror":"https://ror.org/037tm7f56","country_code":"US","type":"education","lineage":["https://openalex.org/I36672615","https://openalex.org/I57206974"]},{"id":"https://openalex.org/I57206974","display_name":"New York University","ror":"https://ror.org/0190ak572","country_code":"US","type":"education","lineage":["https://openalex.org/I57206974"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Bud Mishra","raw_affiliation_strings":["Courant Institute, New York University, New York, USA"],"affiliations":[{"raw_affiliation_string":"Courant Institute, New York University, New York, USA","institution_ids":["https://openalex.org/I36672615","https://openalex.org/I57206974"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5101771002"],"corresponding_institution_ids":["https://openalex.org/I83328450"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.16266325,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"69","last_page":"73"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9970999956130981,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.9125467538833618},{"id":"https://openalex.org/keywords/backdoor","display_name":"Backdoor","score":0.8659771680831909},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8589224815368652},{"id":"https://openalex.org/keywords/formalism","display_name":"Formalism (music)","score":0.6643412709236145},{"id":"https://openalex.org/keywords/malware-analysis","display_name":"Malware analysis","score":0.5808733701705933},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.4602107107639313},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.38795727491378784},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3711225986480713},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.3514064848423004}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.9125467538833618},{"id":"https://openalex.org/C2781045450","wikidata":"https://www.wikidata.org/wiki/Q254569","display_name":"Backdoor","level":2,"score":0.8659771680831909},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8589224815368652},{"id":"https://openalex.org/C73301696","wikidata":"https://www.wikidata.org/wiki/Q5469984","display_name":"Formalism (music)","level":3,"score":0.6643412709236145},{"id":"https://openalex.org/C2779395397","wikidata":"https://www.wikidata.org/wiki/Q15731404","display_name":"Malware analysis","level":3,"score":0.5808733701705933},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.4602107107639313},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.38795727491378784},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3711225986480713},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.3514064848423004},{"id":"https://openalex.org/C558565934","wikidata":"https://www.wikidata.org/wiki/Q2743","display_name":"Musical","level":2,"score":0.0},{"id":"https://openalex.org/C142362112","wikidata":"https://www.wikidata.org/wiki/Q735","display_name":"Art","level":0,"score":0.0},{"id":"https://openalex.org/C153349607","wikidata":"https://www.wikidata.org/wiki/Q36649","display_name":"Visual arts","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/malware.2015.7413686","is_oa":false,"landing_page_url":"https://doi.org/10.1109/malware.2015.7413686","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2015 10th International Conference on Malicious and Unwanted Software (MALWARE)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.5699999928474426,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":18,"referenced_works":["https://openalex.org/W601509448","https://openalex.org/W1498432697","https://openalex.org/W1511105469","https://openalex.org/W1532216865","https://openalex.org/W1532361198","https://openalex.org/W1553940723","https://openalex.org/W1567881920","https://openalex.org/W1862398452","https://openalex.org/W1956767865","https://openalex.org/W2005998857","https://openalex.org/W2042802243","https://openalex.org/W2098543914","https://openalex.org/W2106188980","https://openalex.org/W2131875370","https://openalex.org/W2161081924","https://openalex.org/W2168968181","https://openalex.org/W2172030059","https://openalex.org/W6640826072"],"related_works":["https://openalex.org/W2768892939","https://openalex.org/W2469507153","https://openalex.org/W2008790809","https://openalex.org/W2134874482","https://openalex.org/W4285507391","https://openalex.org/W2397240470","https://openalex.org/W2602767565","https://openalex.org/W170652726","https://openalex.org/W2883822334","https://openalex.org/W3164408430"],"abstract_inverted_index":{"Malware":[0],"infection":[1,56,77],"trees":[2],"are":[3],"computational":[4,60],"structures":[5],"for":[6],"analyzing":[7],"and":[8,12,37,72],"identifying":[9],"different":[10],"processes":[11],"files":[13],"during":[14],"the":[15,33],"execution":[16],"of":[17,35,62],"malware.":[18],"In":[19],"this":[20],"paper,":[21],"we":[22],"describe":[23],"a":[24,45,49,54,66],"sandboxing-based":[25],"formalization":[26],"to":[27],"predict":[28],"malware":[29,55,71,76],"behaviors":[30],"such":[31],"as":[32,44],"possibility":[34],"file":[36],"process":[38],"creation.":[39],"Model":[40],"checking":[41],"is":[42],"used":[43],"querying":[46],"mechanism":[47],"on":[48,69],"labeled":[50],"transition":[51],"system":[52],"representing":[53],"tree.":[57],"We":[58],"evaluate":[59],"feasibility":[61],"our":[63],"formalism":[64],"using":[65],"case":[67],"study":[68],"Backdoor.WIN32.Poison":[70],"behavior":[73],"specified":[74],"by":[75],"trees.":[78]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}