Skip to Main Content
This paper describes MCARTA, a new malware analysis framework which speeds up the velocity of investigation with run-time malware analysis. MCARTA (Malicious Code Automated Run-Time Analysis) is based on a new approach to cataloging, tracking, and comparing malware that does not depend on reverse engineering. Using MCARTA the malware analysts can quickly identify a small set of highly suspicious files to zoom in for further investigation using reverse-engineering tools. Using MCARTA and reverse-engineering tools in sequence, we will get the best of both worlds.
Date of Conference: 13-15 Nov. 2012