P
Philipp Trinius
Researcher at University of Mannheim
Publications - 13
Citations - 904
Philipp Trinius is an academic researcher from University of Mannheim. The author has contributed to research in topics: Malware & The Internet. The author has an hindex of 6, co-authored 13 publications receiving 838 citations.
Papers
More filters
Journal ArticleDOI
Automatic analysis of malware behavior using machine learning
TL;DR: An incremental approach for behavior-based analysis, capable of processing the behavior of thousands of malware binaries on a daily basis is proposed, significantly reduces the run-time overhead of current analysis methods, while providing accurate discovery and discrimination of novel malware variants.
Proceedings ArticleDOI
Visual analysis of malware behavior using treemaps and thread graphs
TL;DR: In this article, the authors use a parametrized abstraction of detailed behavioral reports automatically generated by sandbox environments and explore two visualization techniques: treemaps and thread graphs to support human analysts in detecting maliciousness of software and classifying malicious behavior.
A malware instruction set for behavior-based analysis
TL;DR: A new representation for monitored behavior of malicious software called Malware Instruction Set (MIST) is introduced, optimized for effective and efficient analysis of behavior using data mining and machine learning techniques.
The InMAS Approach
Markus Engelberth,Felix C. Freiling,Jan Göbel,Christian Gorecki,Thorsten Holz,Ralf Hund,Philipp Trinius,Carsten Willems +7 more
TL;DR: An overview of the structure of InMAS and the various tools it integrates is provided, and the web frontend that displays all information on dierent levels of abstraction is introduced, from a coarse-grained overview down to highly detailed information on demand.
Book ChapterDOI
Towards Proactive Spam Filtering (Extended Abstract)
TL;DR: This paper introduces a more proactive approach that allows us to directly collect spam message by interacting with the spam botnet controllers and generates templates that represent a concise summary of a spam run.