NUMERICAL METHODS AND DATA ANALYSIS
A method of searching for similar code sequences in executable binary files using a featureless approach
A. S. Yumaganov, V. V. Myasnikov
Samara National Research University, Samara, Russia
The work is devoted to solving a problem of searching for similar code sequences in executable binary files. The proposed method involves partitioning the processor instructions into functional groups, forming a given functionís primary description by commands position in its body, followed by generating the functionís intermediate description through its comparison with the functions from a "base" library. With the dimensionality of the resulting vector reduced in this way, the resulting final description is then used to perform the search. Results of the experimental study demonstrate the operability of the proposed method. The efficiency of the proposed method is compared against existing methods of searching for similar code sequences. We also provide recommendations on the choice of parameters of the developed method.
searching, code sequence, featureless recognition.
PDF file (273 kB)
A. S. Yumaganov, V. V. Myasnikov, “A method of searching for similar code sequences in executable binary files using a featureless approach”, Computer Optics, 41:5 (2017), 756–764
Citation in format AMSBIB
\by A.~S.~Yumaganov, V.~V.~Myasnikov
\paper A method of searching for similar code sequences in executable binary files using a featureless approach
\jour Computer Optics
Citing articles on Google Scholar:
Related articles on Google Scholar:
|Number of views:|