Research and Implementation of Detection Method of  Manual DLL Injection

Journal of Information Security Research ›› 2017, Vol. 3 ›› Issue (3): 246-253.

Previous Articles Next Articles

Research and Implementation of Detection Method of Manual DLL Injection

Received:2017-03-20 Online:2017-03-15 Published:2017-03-21

手工DLL注入的检测方法研究与实现

陈庄

重庆理工大学（计算机科学与工程学院）

通讯作者: 陈庄
作者简介:教授,硕士生导师，主要研究方向为企业信息化管理、网络与信息安全.

Abstract

Abstract: With the development of computer system and network technology, the technology of malicious code detection is facing new challenges, “DLL injection” is a common means of using malicious code to infect normal executable files. Based on the indepth understanding of the basic structure of PE files, this paper studies a technique for implementing DLL injection by manually modifying PE file, and proposes a method to detect the malicious injected DLL in the PE file. The method proposed has positive significance for research of DLL injection and detection.

Key words: malicious code, DLL injection, PE file, process, detection technology

关键词: 恶意代码, DLL注入, PE文件, 进程, 检测技术

陈庄. 手工DLL注入的检测方法研究与实现[J]. 信息安全研究, 2017, 3(3): 246-253.

[1]	. SWOT-AHP Analysis and Countermeasure Research on Information Security of Public Security Organs [J]. Journal of Information Security Research, 2021, 7(2): 190-196.
[2]	. Research on Development of Deepfake Detection Technology and Its Enlightenment to China [J]. Journal of Information Security Research, 2020, 6(9): 0-0.
[3]	. Flow Anomaly Detection Based on Hierarchical Clustering Method [J]. Journal of Information Security Research, 2020, 6(6): 0-0.
[4]	. Research on Technologies of Windows Malware Detecting Based on Abnormal Behavior in KVM Environment [J]. Journal of Information Security Research, 2020, 6(6): 0-0.
[5]	. Design of Protocol Monitoring System Based on Cloud Computing and Deep Learning [J]. Journal of Information Security Research, 2020, 6(12): 1127-1132.
[6]	. Research on Technologies of Industrial Control Security of Pharmaceutical Industry Based on MES and SCADA [J]. Journal of Information Security Research, 2019, 5(8): 685-690.
[7]	. A Mission Profile-Based Information Security Vulnerability Assessment Method for Warship Systems [J]. Journal of Information Security Research, 2019, 5(5): 414-419.
[8]	. High-Performance Cryptographic Computations in GPUs [J]. Journal of Information Security Research, 2019, 5(1): 88-96.
[9]	. An Android Malicious Code Detection Method Based on Native Code Features [J]. Journal of Information Security Research, 2018, 4(6): 511-517.
[10]	. A Discussion of Information Security Detection Technology Under the Environment of Big Data [J]. Journal of Information Security Research, 2018, 4(5): 433-439.
[11]	. Operation Platform of Passenger Transportation Safety Based on Vehicle Monitoring Data [J]. Journal of Information Security Research, 2018, 4(5): 473-479.
[12]	. A Static Tagging Method of Malicious Code Family Based on Multi-Feature [J]. Journal of Information Security Research, 2018, 4(4): 322-328.
[13]	. Asymmetric Text-dependent Speaker Recognition using Wavelet and Supervector [J]. Journal of Information Security Research, 2018, 4(4): 352-358.
[14]	. Based on DWT multi-model combined prediction of page views on the social networking site [J]. Journal of Information Security Research, 2018, 4(4): 364-368.
[15]	. Android malicious application detection system based on multidimensional feature [J]. Journal of Information Security Research, 2018, 4(2): 133-139.

Research and Implementation of Detection Method of Manual DLL Injection

手工DLL注入的检测方法研究与实现

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics