An immunization scheme for ransomware

Abstract

In recent years, as the popularity of anonymous currencies such as Bitcoin has made the tracking of ransomware attackers more difficult, the amount of ransomware attacks against personal computers and enterprise production servers is increasing rapidly. The ransomware has a wide range of influence and spreads all over the world. It is affecting many industries including internet, education, medical care, traditional industry, etc. This paper uses the idea of virus immunity to design an immunization solution for ransomware viruses to solve the problems of traditional ransomware defense methods (such as anti-virus software, firewalls, etc.), which cannot meet the requirements of rapid detection and immediate prevention of new outbreaks attacks. Our scheme includes two parts: server and client. The server provides an immune configuration file and configuration file management functions, including a configuration file module, a cryptography algorithm module, and a display module. The client obtains the immunization configuration file from server in real time, and performs the corresponding operations according to the configuration file to make the computer have an immune function for a specific ransomware, including an update module, a configuration file module, a cryptography algorithm module, a control module, and a log module. This scheme controls mutexes, services, files and registries respectively, to destroy the triggering conditions of the virus and finally achieve the purpose of immunizing a computer from a specific ransomware.

Publication DOI: https://doi.org/10.32604/CMC.2020.010592
Divisions: College of Engineering & Physical Sciences
Funding Information: Funding Statement: This work is supported in part by the National Natural Science Foundation of China under grant No. 61872069, in part by the Fundamental Research Funds for the Central Universities (N2017012) Conflicts of Interest: The authors declare th
Additional Information: This work is licensed under a Creative Commons Attribution 4.0 International License , which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited. Funding Information: Funding Statement: This work is supported in part by the National Natural Science Foundation of China under grant No. 61872069, in part by the Fundamental Research Funds for the Central Universities (N2017012) Conflicts of Interest: The authors declare that they have no conflicts of interest to report regarding the present study.
Uncontrolled Keywords: Malware,Malware immunization,Ransomware,Biomaterials,Modelling and Simulation,Mechanics of Materials,Computer Science Applications,Electrical and Electronic Engineering
Publication ISSN: 1546-2226
Last Modified: 11 Mar 2024 08:33
Date Deposited: 11 Dec 2020 11:17
Full Text Link:
Related URLs: http://www.scop ... tnerID=8YFLogxK (Scopus URL)
https://www.tec ... cmc/v64n2/39345 (Publisher URL)
PURE Output Type: Article
Published Date: 2020-06-10
Accepted Date: 2020-04-14
Authors: Song, Jingping
Meng, Qingyu
Luo, Chenke
Naik, Nitin (ORCID Profile 0000-0002-0659-9646)
Xu, Jian

Download

[img]

Version: Published Version

License: Creative Commons Attribution

| Preview

Export / Share Citation


Statistics

Additional statistics for this record