We found a match
Your institution may have access to this item. Find your institution then sign in to continue.
- Title
WannaCry Ransomware: Analysis of Infection, Persistence, Recovery Prevention and Propagation Mechanisms.
- Authors
Akbanov, Maxat; Vassilakis, Vassilios G.; Logothetis, Michael D.
- Abstract
In recent years, we have been experiencing fast pro-liferation of different types of ransomware targeting home users, companies and even critical telecommunications in-frastructure elements. Modern day ransomware relies on sophisticated infection, persistence and recovery prevention mechanisms. Some recent examples that received significant attention include WannaCry, Petya and BadRabbit. To de-sign and develop appropriate defense mechanisms, it is im-portant to understand the characteristics and the behavior of different types of ransomware. Dynamic analysis techniques are typically used to achieve that purpose, where the malicious binaries are executed in a controlled environment and are then observed. In this work, the dynamic analysis re-sults focusing on the infamous WannaCry ransomware are presented. In particular, WannaCry is examined, during its execution in a purpose-built virtual lab environment, in order to analyze its infection, persistence, recovery prevention and propagation mechanisms. The results obtained may be used for developing appropriate detection and defense solutions for WannaCry and other ransomware families that exhibit similar behaviors.
- Publication
Journal of Telecommunications & Information Technology, 2019, Issue 1, p113
- ISSN
1509-4553
- Publication type
Academic Journal
- DOI
10.26636/jtit.2019.130218