2016 Symposium Posters

Posters > 2016

Artifacts of WIN_JELLY Malware using GPU Forensics


PDF

Primary Investigator:
Research Independant

Project Members
Yazeed Albabtain
Abstract
Malware is used to refer to the programs that are designed with an ill intention. They are mainly designed so that they can compromise with the system and carry out some destruction when applied. They are therefore said to be malicious. Each malware has a different form and different targets, WIN_JELLY is a considered one of the unique malwares because of its technique. The malware targets the Graphics Processing Unit (GPU) to avoid detection. Not many forensics tools have been developed for the GPU due to its nature of handling data. A thorough investigation will be implemented in this research using malware static analysis, malware dynamic analysis and Memory dump technique which it will be developed to get a dedicated GPU dump and tested for any artifacts of WIN_JELLY malware. The results of this research will help in identifying future malwares that targets the GPU and whether the memory dump technique is useful in detecting or accelerating the detection process.