Document Type

Journal Article

Publisher

Elsevier

Place of Publication

United Kingdom

School

School of Science

Comments

Originally published as: Hampton, N., Baig, Z., & Zeadally, S. (2018). Ransomware behavioural analysis on windows platforms. Journal of Information Security and Applications, 40, 44-51. Original article available here.

Abstract

Ransomware infections have grown exponentially during the recent past to cause major disruption in operations across a range of industries including the government. Through this research, we present an analysis of 14 strains of ransomware that infect Windows platforms, and we do a comparison of Windows Application Programming Interface (API) calls made through ransomware processes with baselines of normal operating system behaviour. The study identifies and reports salient features of ransomware as referred through the frequencies of API calls

DOI

10.1016/j.jisa.2018.02.008

Share

 
COinS