## A Survey of Visualization Systems for Malware Analysis

2015
Wagner, Markus
Luh, Robert
Haberson, Andrea
Rind, Alexander
Aigner, Wolfgang
##### Publication type
Contribution to a conference collection
Published
##### Published in
Eurographics Conference on Visualization (EuroVis) ; STARs - State of The Art Reports / Rita Borgo et al. (ed.). - The Eurographics Association, 2015. - pp. 105-125
##### Abstract
Due to the increasing threat from malicious software (malware), monitoring of vulnerable systems is becoming increasingly important. The need to log and analyze activity encompasses networks, individual computers, as well as mobile devices. While there are various automatic approaches and techniques available to detect, identify, or capture malware, the actual analysis of the ever-increasing number of suspicious samples is a time-consuming process for malware analysts. The use of visualization and highly interactive visual analytics systems can help to support this analysis process with respect to investigation, comparison, and summarization of malware samples. Currently, there is no survey available that reviews available visualization systems supporting this important and emerging field. We provide a systematic overview and categorization of malware visualization systems from the perspective of visual analytics. Additionally, we identify and evaluate data providers and commercial tools that produce meaningful input data for the reviewed malware visualization systems. This helps to reveal data types that are currently underrepresented, enabling new research opportunities in the visualization community.
##### Subject (DDC)
004 Computer Science
##### Conference
Eurographics Conference on Visualization (EuroVis), May 25, 2015 - May 29, 2015, Cagliari
##### Cite This
ISO 690WAGNER, Markus, Fabian FISCHER, Robert LUH, Andrea HABERSON, Alexander RIND, Daniel A. KEIM, Wolfgang AIGNER, 2015. A Survey of Visualization Systems for Malware Analysis. Eurographics Conference on Visualization (EuroVis). Cagliari, May 25, 2015 - May 29, 2015. In: RITA BORGO, , ed. and others. Eurographics Conference on Visualization (EuroVis) ; STARs - State of The Art Reports. The Eurographics Association, pp. 105-125. Available under: doi: 10.2312/eurovisstar.20151114
BibTex
@inproceedings{Wagner2015Surve-32444,
year={2015},
doi={10.2312/eurovisstar.20151114},
title={A Survey of Visualization Systems for Malware Analysis},
publisher={The Eurographics Association},
booktitle={Eurographics Conference on Visualization (EuroVis) ; STARs - State of The Art Reports},
pages={105--125},
editor={Rita Borgo},
author={Wagner, Markus and Fischer, Fabian and Luh, Robert and Haberson, Andrea and Rind, Alexander and Keim, Daniel A. and Aigner, Wolfgang}
}

RDF
<rdf:RDF
xmlns:dcterms="http://purl.org/dc/terms/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
xmlns:bibo="http://purl.org/ontology/bibo/"
xmlns:dspace="http://digital-repositories.org/ontologies/dspace/0.1.0#"
xmlns:foaf="http://xmlns.com/foaf/0.1/"
xmlns:void="http://rdfs.org/ns/void#"
xmlns:xsd="http://www.w3.org/2001/XMLSchema#" >
<dcterms:issued>2015</dcterms:issued>
<dc:language>eng</dc:language>
<dc:date rdf:datatype="http://www.w3.org/2001/XMLSchema#dateTime">2015-12-16T10:29:50Z</dc:date>
<dc:contributor>Wagner, Markus</dc:contributor>
<dc:creator>Aigner, Wolfgang</dc:creator>
<dc:creator>Keim, Daniel A.</dc:creator>
<dcterms:abstract xml:lang="eng">Due to the increasing threat from malicious software (malware), monitoring of vulnerable systems is becoming increasingly important. The need to log and analyze activity encompasses networks, individual computers, as well as mobile devices. While there are various automatic approaches and techniques available to detect, identify, or capture malware, the actual analysis of the ever-increasing number of suspicious samples is a time-consuming process for malware analysts. The use of visualization and highly interactive visual analytics systems can help to support this analysis process with respect to investigation, comparison, and summarization of malware samples. Currently, there is no survey available that reviews available visualization systems supporting this important and emerging field. We provide a systematic overview and categorization of malware visualization systems from the perspective of visual analytics. Additionally, we identify and evaluate data providers and commercial tools that produce meaningful input data for the reviewed malware visualization systems. This helps to reveal data types that are currently underrepresented, enabling new research opportunities in the visualization community.</dcterms:abstract>
<foaf:homepage rdf:resource="http://localhost:8080/"/>
<dc:rights>terms-of-use</dc:rights>
<dc:contributor>Fischer, Fabian</dc:contributor>
<dc:creator>Luh, Robert</dc:creator>
<dspace:hasBitstream rdf:resource="https://kops.uni-konstanz.de/bitstream/123456789/32444/1/Wagner_2-y6hck7oiswhx2.pdf"/>
<dc:contributor>Keim, Daniel A.</dc:contributor>
<dc:contributor>Rind, Alexander</dc:contributor>
<dc:creator>Fischer, Fabian</dc:creator>
<void:sparqlEndpoint rdf:resource="http://localhost/fuseki/dspace/sparql"/>
<dcterms:rights rdf:resource="https://rightsstatements.org/page/InC/1.0/"/>
<dcterms:hasPart rdf:resource="https://kops.uni-konstanz.de/bitstream/123456789/32444/1/Wagner_2-y6hck7oiswhx2.pdf"/>
<dc:contributor>Luh, Robert</dc:contributor>
<bibo:uri rdf:resource="https://kops.uni-konstanz.de/handle/123456789/32444"/>
<dcterms:isPartOf rdf:resource="https://kops.uni-konstanz.de/server/rdf/resource/123456789/36"/>
<dc:contributor>Haberson, Andrea</dc:contributor>
<dcterms:available rdf:datatype="http://www.w3.org/2001/XMLSchema#dateTime">2015-12-16T10:29:50Z</dcterms:available>
<dspace:isPartOfCollection rdf:resource="https://kops.uni-konstanz.de/server/rdf/resource/123456789/36"/>
<dcterms:title>A Survey of Visualization Systems for Malware Analysis</dcterms:title>
<dc:contributor>Aigner, Wolfgang</dc:contributor>
<dc:creator>Wagner, Markus</dc:creator>
<dc:creator>Haberson, Andrea</dc:creator>
<dc:creator>Rind, Alexander</dc:creator>
</rdf:Description>
</rdf:RDF>

Yes