Dynamic malware analysis in the modern era—A state of the art survey

Ori Or-Meir, Nir Nissim, Yuval Elovici, Lior Rokach

ACM Computing Surveys (CSUR) 52 (5), 1-48, 2019

Although malicious software (malware) has been around since the early days of computers, the sophistication and innovation of malware has increased over the years. In particular, the latest crop of ransomware has drawn attention to the dangers of malicious software, which can cause harm to private users as well as corporations, public services (hospitals and transportation systems), governments, and security institutions. To protect these institutions and the public from malware attacks, malicious activity must be detected as early as possible, preferably before it conducts its harmful acts. However, it is not always easy to know what to look for—especially when dealing with new and unknown malware that has never been seen. Analyzing a suspicious file by static or dynamic analysis methods can provide relevant and valuable information regarding a file’s impact on the hosting system and help determine whether …