Academia.eduAcademia.edu

Outline

Title
Abstract
FAQs
Figures
Introduction
Background
Summary and Hypotheses
Hypothesis 1
Overview
Differential Analysis
Summarized Results
Metadata Based Detectors. Table
Limitations
Conclusion
Acknowledgement
References

Extract Me If You Can: Abusing PDF Parsers in Malware Detectors

Profile image of Abhishek VasishtAbhishek VasishtProfile image of H. YinH. Yin
https://doi.org/10.14722/NDSS.2016.23483
visibility

description

15 pages

link

1 file

Abstract

—Owing to the popularity of the PDF format and the continued exploitation of Adobe Reader, the detection of malicious PDFs remains a concern. All existing detection techniques rely on the PDF parser to a certain extent, while the complexity of the PDF format leaves an abundant space for parser confusion. To quantify the difference between these parsers and Adobe Reader, we create a reference JavaScript extractor by directly tapping into Adobe Reader at locations identified through a mostly automatic binary analysis technique. By comparing the output of this reference extractor against that of several open-source JavaScript extractors on a large data set obtained from VirusTotal, we are able to identify hundreds of samples which existing extractors fail to extract JavaScript from. By analyzing these samples we are able to identify several weaknesses in each of these extractors. Based on these lessons, we apply several obfuscations on a malicious PDF sample, which can successfully evade all the malware detectors tested. We call this evasion technique a PDF parser confusion attack. Lastly, we demonstrate that the reference JavaScript extractor improves the accuracy of existing JavaScript-based classifiers and how it can be used to mitigate these parser limitations in a real-world setting.

FAQs

sparkles

AI

What are the main findings regarding JavaScript extraction from malicious PDFs?add

The study reveals that existing extractors miss JavaScript in 22.47% of malicious samples, indicating significant detection shortcomings.

How does the reference JavaScript extractor improve detection rates?add

Using the reference extractor, detection rates for PJScan increase from 68% to 96% on the tested sample set.

What is the impact of parser confusion attacks on PDF detectors?add

Parser confusion attacks successfully evade all tested malware detectors, including signature-based and JavaScript-based systems.

What methodologies were used to evaluate existing PDF extractors?add

The research compared the performance of multiple JavaScript extractors against 163,306 PDFs, highlighting discrepancies in extraction capabilities.

What limitations does the reference JavaScript extractor face?add

The reference extractor only captures JavaScript automatically executed by Adobe Reader, potentially missing delayed or user-interactive scripts.

Figures (10)
TABLE I: Existing PDF Classifiers
TABLE I: Existing PDF Classifiers
Fig. 1: Tap Point Identification.
Fig. 1: Tap Point Identification.
Fig. 2: A Comparison of Identifying Contiguous Memory Operations between Prior and This Work
Fig. 2: A Comparison of Identifying Contiguous Memory Operations between Prior and This Work
TABLE II: JavaScript Extractions
TABLE II: JavaScript Extractions
TABLE IV: Failings and Limitations
TABLE IV: Failings and Limitations
"Origami “libpdfjs 7>PDFiD *jsunpack-n TABLE V: Parser Confusion Attacks on Commercial Detectors and JS Extractors
"Origami “libpdfjs 7>PDFiD *jsunpack-n TABLE V: Parser Confusion Attacks on Commercial Detectors and JS Extractors
TABLE VI: PDFrate Evasion then applied obfuscations which were successful in thwarting the commercial malware detectors to this sample to evaluate its effect on the detector. This attack is evaluated against the PDFrate classifier[32] which has been published as a publicly available online service[9]. obscure revision 6 (R6) handler are very effective in evading detection. Though the Origami tool correctly implements the revision 6 security handler, it is easily thwarted by injecting a comment into the document trailer, producing a sample which completely evades detection. Eventually, the sample obfuscated using the combination of Flate compression, the revision 6 security handler, object streams and the comment injected in the trailer produces zero detections on VirusTotal and can defeat all the JavaScript extractors.
TABLE VI: PDFrate Evasion then applied obfuscations which were successful in thwarting the commercial malware detectors to this sample to evaluate its effect on the detector. This attack is evaluated against the PDFrate classifier[32] which has been published as a publicly available online service[9]. obscure revision 6 (R6) handler are very effective in evading detection. Though the Origami tool correctly implements the revision 6 security handler, it is easily thwarted by injecting a comment into the document trailer, producing a sample which completely evades detection. Eventually, the sample obfuscated using the combination of Flate compression, the revision 6 security handler, object streams and the comment injected in the trailer produces zero detections on VirusTotal and can defeat all the JavaScript extractors.
Fig. 5: Possible Deployment Scenario
Fig. 5: Possible Deployment Scenario
TABLE VII: Average Runtime TABLE VII: PJScan Performance
TABLE VII: Average Runtime TABLE VII: PJScan Performance

Related papers

Detecting obfuscated JavaScripts using machine learning
Krzysztof Kryszczuk

2016

JavaScript is a common attack vector for attacking browsers, browser plug-ins, email clients and other JavaScript enabled applications. Malicious JavaScripts redirect victims to exploit kits, probe for known vulnerabilities to select a fitting exploit or manipulate the Document Object Model (DOM) of a web page in a harmful way. Malicious JavaScript code is often obfuscated in order to make it hard to detect using signature-based approaches. Since the only other reason to use obfuscation is to protect intellectual property, the share of scripts which are both benign and obfuscated is quite low, and could easily be captured with a whitelist. A detector that can reliably detect obfuscated JavaScripts would therefore be a valuable tool in fighting malicious JavaScripts. In this paper, we present a method for automatic detection of obfuscated JavaScript using a machine-learning approach. Using a dataset of regular, minified and obfuscated samples from a content delivery network and the A...

View PDFchevron_right
Ensemble Learning for Detection of Malicious Content Embedded in PDF Documents
Dr. Hiran V Nath

Portable Document Format (PDF) is used as a defacto standard for sharing documents. Even though pdf is a document description language, it has lot of features similar to programming language. With the add on support of JavaScript (Malicious script) and the facility to embed any file into a PDF document, creates a big potential for disastrous cyber attacks. From 2008 onwards, the malicious users are concentrating more on embedding malicious codes into pdf documents. Compared to PE, pdf files pose higher risk since the embedded content can be encrypted and/or encoded. Recently multistage delivery of malware is used for APTs and targeted attacks. Here pdf documents are used for accomplishing one or more stages, like mini-duke, where pdf file was used for first stage. It went undetected for almost two years. These files could be considered as a carrier of k-ary codes. In this paper, we bring out the importance of analyzing the data encoded in the stream tag along with other structural information. We are giving a proof of concept by embedding JavaScript into PDF document. This is not detected by any of the existing pdf parsers. Finally, we propose ensemble learning for detecting such pdf files.

View PDFchevron_right
Towards Robust Detection of Adversarial Infection Vectors: Lessons Learned in PDF Malware
Davide Maiorca

2018

Malware still constitutes a major threat in the cybersecurity landscape, also due to the widespread use of infection vectors such as documents and other media formats. These infection vectors hide embedded malicious code to the victim users, thus facilitating the use of social engineering techniques to infect their machines. In the last decade, machine-learning algorithms provided an effective defense against such threats, being able to detect malware embedded in various infection vectors. However, the existence of an arms race in an adversarial setting like that of malware detection has recently questioned their appropriateness for this task. In this work, we focus on malware embedded in PDF files, as a representative case of how such an arms race can evolve. We first provide a comprehensive taxonomy of PDF malware attacks, and of the various learning-based detection systems that have been proposed to detect them. Then, we discuss more sophisticated attack algorithms that craft evasive PDF malware oriented to bypass such systems. We describe state-of-the-art mitigation techniques, highlighting that designing robust machine-learning algorithms remains a challenging open problem. We conclude the paper by providing a set of guidelines for designing more secure systems against the threat of adversarial malicious PDF files. CCS Concepts: • Security and privacy → Malware and its mitigation; • Theory of computation → Adversarial learning;

View PDFchevron_right
Detection of Obfuscated Malicious JavaScript Code
Ammar Alazab

Future Internet

Websites on the Internet are becoming increasingly vulnerable to malicious JavaScript code because of its strong impact and dramatic effect. Numerous recent cyberattacks use JavaScript vulnerabilities, and in some cases employ obfuscation to conceal their malice and elude detection. To secure Internet users, an adequate intrusion-detection system (IDS) for malicious JavaScript must be developed. This paper proposes an automatic IDS of obfuscated JavaScript that employs several features and machine-learning techniques that effectively distinguish malicious and benign JavaScript codes. We also present a new set of features, which can detect obfuscation in JavaScript. The features are selected based on identifying obfuscation, a popular method to bypass conventional malware detection systems. The performance of the suggested approach has been tested on JavaScript obfuscation attacks. The studies have shown that IDS based on selected features has a detection rate of 94% for malicious sa...

View PDFchevron_right
Detecting Obfuscated JavaScript Malware Using Sequences of Internal Function Calls
emad mahmodi

Web browsers are often used as a popular means for compromising Internet hosts. An attacker may inject a JavaScript malware into a web page. When a victim visits this page, the malware is executed and attempts to exploit a specific browser vulnerability or download an unwanted program. Obfuscated JavaScript mal-ware can easily evade signature-based detection by changing the appearance of JavaScript code. To address this problem, some previous studies have used static analysis in which some features are extracted from both benign and malicious web pages, and then a classifier is trained to distinguish between them. Because nowadays benign JavaScript code is often obfuscated, static analysis techniques generate many false alarms. In this paper, we use dynamic analysis to monitor a web page for detecting obfuscated JavaScript malware. We first load a set of malicious web pages in a real web browser and collect a sequence of predictive function calls using internal function debugging for each of them. We then group similar sequences into the same cluster based on the normalized Levenshtein distance (NLD) metric and generate a so-called behavioral signature for each cluster. A web page is detected as malicious only if the sequence of its intercepted function calls is matched with at least one generated behavioral signature. Our evaluation results show that the generated behavioral signatures are able to detect obfuscated JavaScript malware with a low false alarm rate.

View PDFchevron_right
Malicious JavaScript Detection by Features Extraction
Gerardo Canfora

In recent years, JavaScript-based attacks have become one of the most common and successful types of attack. Existing techniques for detecting malicious JavaScripts could fail for different reasons. Some techniques are tailored on specific kinds of attacks, and are ineffective for others. Some other techniques require costly computational resources to be implemented. Other techniques could be circumvented with evasion methods. This paper proposes a method for detecting malicious JavaScript code based on five features that capture different characteristics of a script: execution time, external referenced domains and calls to JavaScript functions. Mixing different types of features could result in a more effective detection technique, and overcome the limitations of existing tools created for identifying malicious JavaScript. The experimentation carried out suggests that a combination of these features is able to successfully detect malicious JavaScript code (in the best cases we obtained a precision of 0.979 and a recall of 0.978).

View PDFchevron_right
Digital Investigation of PDF Files: Unveiling Traces of Embedded Malware
Davide Maiorca

IEEE Security & Privacy, 2019

Over the last decade, malicious software (or malware, for short) has shown an increasing sophistication and proliferation, fueled by a flourishing underground economy, in response to the increasing complexity of modern defense mechanisms. PDF documents are among the major vectors used to convey malware, thanks to the flexibility of their structure and the ability of embedding different kinds of content, ranging from images to JavaScript code. Despite the numerous efforts made by the research and industrial communities, PDF malware is still one of the major threats on the cyber-security landscape. In this paper, we provide an overview of the current attack techniques used to convey PDF malware, and discuss state-of-the-art PDF malware analysis tools that provide valuable support to digital forensic investigations. We finally discuss limitations and open issues of the current defense mechanisms, and sketch some interesting future research directions.

View PDFchevron_right
A Feature Set of Small Size for the PDF Malware Detection
Charles Nicholas

arXiv (Cornell University), 2023

Machine learning (ML)-based malware detection systems are becoming increasingly important as malware threats increase and get more sophisticated. PDF files are often used as vectors for phishing attacks because they are widely regarded as trustworthy data resources, and are accessible across different platforms. Therefore, researchers have developed many different PDF malware detection methods. Performance in detecting PDF malware is greatly influenced by feature selection. In this research, we propose a small features set that don't require too much domain knowledge of the PDF file. We evaluate proposed features with six different machine learning models. We report the best accuracy of 99.75% when using Random Forest model. Our proposed feature set, which consists of just 12 features, is one of the most conciseness in the field of PDF malware detection. Despite its modest size, we obtain comparable results to state-of-the-art that employ a much larger set of features.

View PDFchevron_right
Toward Robust Classifiers for PDF Malware Detection
mohammed A Thanoon

Computers Materials & Continua, 2021

Malicious Portable Document Format (PDF) files represent one of the largest threats in the computer security space. Significant research has been done using handwritten signatures and machine learning based on detection via manual feature extraction. These approaches are time consuming, require substantial prior knowledge, and the list of features must be updated with each newly discovered vulnerability individually. In this study, we propose two models for PDF malware detection. The first model is a convolutional neural network (CNN) integrated into a standard deviation based regularization model to detect malicious PDF documents. The second model is a support vector machine (SVM) based ensemble model with three different kernels. The two models were trained and tested on two different datasets. The experimental results show that the accuracy of both models is approximately 100%, and the robustness against evasive samples is excellent. Further, the robustness of the models was evaluated with malicious PDF documents generated using Mimicus. Both models can distinguish the different vulnerabilities exploited in malicious files and achieve excellent performance in terms of generalization ability, accuracy, and robustness.

View PDFchevron_right
The power of obfuscation techniques in malicious JavaScript code: A measurement study
Yash Panchal

2012 7th International Conference on Malicious and Unwanted Software, 2012

JavaScript based attacks have been reported as the top Internet security threats in recent years. Since most of the Internet users rely on anti-virus software to protect themselves from malicious JavaScript code, attackers exploit JavaScript obfuscation techniques to evade the detection of anti-virus software. To better understand the obfuscation techniques adopted by malicious JavaScript code, we conduct a measurement study. We first categorize observed JavaScript obfuscation techniques. Then we conduct a statistic analysis on the usage of different categories of obfuscation techniques in real-world malicious JavaScript samples. We also study the detection effectiveness of 20 most popular anti-virus software against obfuscation techniques. Based on the results, we analyze the cause of the popularity of obfuscation in malicious JavaScript code; the reason behind the choice of obfuscation techniques and the difference between benign obfuscation and malicious obfuscation. Moreover, we also provide suggestions for designing effective obfuscation detection approaches in future.

View PDFchevron_right

References (35)

  1. "Adobe acrobat reader : Security vulnerabilities published in 2014," http://www.cvedetails.com/vulnerability-list/vendor id-53/product id- 497/year-2014/Adobe-Acrobat-Reader.html.
  2. "Adobe acrobat reader : Security vulnerabilities published in 2015," http://www.cvedetails.com/vulnerability-list/vendor id-53/product id- 497/year-2015/Adobe-Acrobat-Reader.html.
  3. "CVE-2013-3346 Adobe Reader ToolButton Use After Free," http://www.rapid7.com/db/modules/exploit/windows/browser/adobe toolbutton.
  4. "difflib -helpers for computing deltas," https://docs.python.org/2/ library/difflib.html.
  5. "Introducing adobe reader protected mode," http://blogs.adobe.com/ security/2010/07/introducing-adobe-reader-protected-mode.html.
  6. "PDFrate A machine learning based classifier operating on document metadata and structure," http://pdfrate.com/.
  7. "PyPDF2," https://github.com/mstamy2/PyPDF2.
  8. "Vulnerability Details : CVE-2013-3346," http://www.cvedetails.com/ cve/2013-3346.
  9. J. Berkenbilt, "QPDF: A Content-Preserving PDF Transformation Sys- tem," http://qpdf.sourceforge.net/.
  10. G. Delugré, "The undocumented password validation algorithm of adobe reader x," http://esec-lab.sogeti.com/post/The-undocumented- password-validation-algorithm-of-Adobe-Reader-X.
  11. B. Dolan-Gavitt, T. Leek, J. Hodosh, and W. Lee, "Tappan zee (north) bridge: mining memory accesses for introspection," in Proceedings of the 2013 ACM SIGSAC conference on Computer & communications security. ACM, 2013, pp. 839-850.
  12. P. Fogla and W. Lee, "Evading network anomaly detection systems: Formal reasoning and practical techniques," in Proceedings of the 13th ACM Conference on Computer and Communications Security, 2006.
  13. P. Fogla, M. Sharif, R. Perdisci, O. Kolesnikov, and W. Lee, "Poly- morphic blending attacks," in Proceedings of the 15th Conference on USENIX Security Symposium -Volume 15, 2006.
  14. M. Garnaeva, V. Chebyshev, D. Makrushin, R. Unuchek, and A. Ivanov, "Kaspersky security bulletin 2014." http: //securelist.com/analysis/kaspersky-security-bulletin/68010/kaspersky- security-bulletin-2014-overall-statistics-for-2014/.
  15. D. Goodin, "It's official: Adobe reader is world's most-exploited app," http://www.theregister.co.uk/2010/03/09/adobe reader attacks/, 2010.
  16. A. Henderson, A. Prakash, L. K. Yan, X. Hu, X. Wang, R. Zhou, and H. Yin, "Make it work, make it right, make it fast: Building a platform- neutral whole-system dynamic binary analysis platform," in Proceedings of the 2014 International Symposium on Software Testing and Analysis, ser. ISSTA 2014. New York, NY, USA: ACM, 2014, pp. 248-258. [Online]. Available: http://doi.acm.org/10.1145/2610384.2610407
  17. G. Hunt and D. Brubacher, "Detours: Binary interception of win32 functions," in Third USENIX Windows NT Symposium. USENIX, July 1999, p. 8. [Online]. Available: http://research.microsoft.com/ apps/pubs/default.aspx?id=68568
  18. S. Jana and V. Shmatikov, "Abusing file processing in malware detectors for fun and profit," in Proceedings of the 2012 IEEE Symposium on Security and Privacy, ser. SP '12. Washington, DC, USA: IEEE Computer Society, 2012, pp. 80-94. [Online]. Available: http://dx.doi.org/10.1109/SP.2012.15
  19. P. Laskov and N. Šrndić, "Static Detection of Malicious JavaScript- bearing PDF Documents," in Proceedings of the 27th Annual Computer Security Applications Conference, ser. ACSAC '11. New York, NY, USA: ACM, 2011, pp. 373-382. [Online]. Available: http://doi.acm.org/10.1145/2076732.2076785
  20. M. Lee, "GNU PDF project leaves FSF High Priority Projects list; mis- sion complete!" https://www.fsf.org/blogs/community/gnu-pdf-project- leaves-high-priority-projects-list-mission-complete.
  21. D. Liu, H. Wang, and A. Stavrou, "Detecting Malicious Javascript in PDF Through Document Instrumentation," in Proceedings of the 2014 44th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, ser. DSN '14. Washington, DC, USA: IEEE Computer Society, 2014, pp. 100-111. [Online]. Available: http://dx.doi.org/10.1109/DSN.2014.92
  22. X. Lu, J. Zhuge, R. Wang, Y. Cao, and Y. Chen, "De-obfuscation and Detection of Malicious PDF Files with High Accuracy," in 46th Hawaii International Conference on System Sciences, HICSS 2013, Wailea, HI, USA, January 7-10, 2013, 2013, pp. 4890-4899. [Online]. Available: http://dx.doi.org/10.1109/HICSS.2013.166
  23. C.-K. Luk, R. Cohn, R. Muth, H. Patil, A. Klauser, G. Lowney, S. Wallace, V. J. Reddi, and K. Hazelwood, "Pin: Building customized program analysis tools with dynamic instrumentation," in Proceedings of the 2005 ACM SIGPLAN Conference on Programming Language Design and Implementation, 2005.
  24. D. Maiorca, I. Corona, and G. Giacinto, "Looking at the Bag is Not Enough to Find the Bomb: An Evasion of Structural Methods for Malicious PDF Files Detection," in Proceedings of the 8th ACM SIGSAC Symposium on Information, Computer and Communications Security, ser. ASIA CCS '13. New York, NY, USA: ACM, 2013, pp. 119-130. [Online]. Available: http: //doi.acm.org/10.1145/2484313.2484327
  25. D. Maiorca, G. Giacinto, and I. Corona, "A Pattern Recognition System for Malicious PDF Files Detection," in Proceedings of the 8th International Conference on Machine Learning and Data Mining in Pattern Recognition, ser. MLDM'12. Berlin, Heidelberg: Springer-Verlag, 2012, pp. 510-524. [Online]. Available: http: //dx.doi.org/10.1007/978-3-642-31537-4 40
  26. P. Ratanaworabhan, B. Livshits, and B. Zorn, "Nozzle: A defense against heap-spraying code injection attacks," in Proceedings of the Usenix Security Symposium. USENIX, 2009. [Online]. Available: http://research.microsoft.com/apps/pubs/default.aspx?id=81085
  27. M. Z. Shafiq, S. A. Khayam, and M. Farooq, "Embedded malware de- tection using markov n-grams," in Proceedings of the 5th International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment, 2008.
  28. C. Smutz and A. Stavrou, "Malicious PDF Detection Using Metadata and Structural Features," in Proceedings of the 28th Annual Computer Security Applications Conference, ser. ACSAC '12. New York, NY, USA: ACM, 2012, pp. 239-248. [Online]. Available: http://doi.acm.org/10.1145/2420950.2420987
  29. K. Snow, S. Krishnan, F. Monrose, and N. Provos, "Shellos: Enabling fast detection and forensic analysis of code injection attacks," in USENIX Security Symposium, 2011. [Online]. Available: http://static.usenix.org/events/sec11/tech/full papers/Snow.pdf
  30. Y. Song, M. E. Locasto, A. Stavrou, A. D. Keromytis, and S. J. Stolfo, "On the infeasibility of modeling polymorphic shellcode," in Proceed- ings of the 14th ACM Conference on Computer and Communications Security, 2007.
  31. D. Stevens, "PDF Tools," http://blog.didierstevens.com/programs/pdf- tools/.
  32. --, "PDFiD On VirusTotal," http://blog.didierstevens.com/2009/04/ 21/pdfid-on-virustotal/.
  33. Z. Tzermias, G. Sykiotakis, M. Polychronakis, and E. P. Markatos, "Combining static and dynamic analysis for the detection of malicious documents," in Proceedings of the Fourth European Workshop on System Security, ser. EUROSEC '11. New York, NY, USA: ACM, 2011, pp. 4:1-4:6. [Online]. Available: http: //doi.acm.org/10.1145/1972551.1972555
  34. N. Šrndić and P. Laskov, "Detection of malicious PDF files based on hierarchical document structure," in In Proceedings of the Network and Distributed System Security Symposium, NDSS 2013. The Internet Society, 2013.
  35. N. Šrndic and P. Laskov, "Practical evasion of a learning-based classifier: A case study," in Proceedings of the 2014 IEEE Symposium on Security and Privacy, ser. SP '14. Washington, DC, USA: IEEE Computer Society, 2014, pp. 197-211. [Online]. Available: http://dx.doi.org/10.1109/SP.2014.20

Related papers

Detecting Malicious Javascript in PDF through Document Instrumentation
carlos dominguez leyva

— An emerging threat vector, embedded malware inside popular document formats, has become rampant since 2008. Owed to its widespread use and Javascript support, PDF has been the primary vehicle for delivering embedded exploits. Unfortunately, existing defenses are limited in effectiveness, vulnerable to evasion, or computationally expensive to be employed as an on-line protection system. In this paper, we propose a context-aware approach for detection and confinement of malicious Javascript in PDF. Our approach statically extracts a set of static features and inserts context monitoring code into a document. When an instrumented document is opened, the context monitoring code inside will cooperate with our runtime monitor to detect potential infection attempts in the context of Javascript execution. Thus, our detector can identify malicious documents by using both static and runtime features. To validate the effectiveness of our approach in a real-world setting, we first conduct a security analysis, showing that our system is able to remain effective in detection and be robust against evasion attempts even in the presence of sophisticated adversaries. We implement a prototype of the proposed system, and perform extensive experiments using 18623 benign PDF samples and 7370 malicious samples. Our evaluation results demonstrate that our approach can accurately detect and confine malicious Javascript in PDF with minor performance overhead.

View PDFchevron_right
A Structural and Content-based Approach for a Precise and Robust Detection of Malicious PDF Files
Davide Maiorca

Proceedings of the 1st International Conference on Information Systems Security and Privacy, 2015

During the past years, malicious PDF files have become a serious threat for the security of modern computer systems. They are characterized by a complex structure and their variety is considerably high. Several solutions have been academically developed to mitigate such attacks. However, they leveraged on information that were extracted from either only the structure or the content of the PDF file. This creates problems when trying to detect non-Javascript or targeted attacks. In this paper, we present a novel machine learning system for the automatic detection of malicious PDF documents. It extracts information from both the structure and the content of the PDF file, and it features an advanced parsing mechanism. In this way, it is possible to detect a wide variety of attacks, including non-Javascript and parsing-based ones. Moreover, with a careful choice of the learning algorithm, our approach provides a significantly higher accuracy compared to other static analysis techniques, especially in the presence of adversarial malware manipulation.

View PDFchevron_right
An Evasion Resilient Approach to the Detection of Malicious PDF Files
Davide Maiorca

Communications in Computer and Information Science, 2015

Malicious PDF files still constitute a serious threat to the systems security. New reader vulnerabilities have been discovered, and research has shown that current state of the art approaches can be easily bypassed by exploiting weaknesses caused by erroneous parsing or incomplete information extraction. In this work, we present a novel machine learning system to the detection of malicious PDF files. We have developed a static approach that leverages on information extracted by both the structure and the content of PDF files, which allows to improve the system robustness against evasion attacks. Experimental results show that our system is able to outperform all publicly available state of the art tools. We also report a significant improvement of the performances at detecting reverse mimicry attacks, which are able to completely evade systems that only extract information from the PDF file structure. Finally, we claim that, to avoid targeted attacks, a more careful design of machine learning based detectors is needed.

View PDFchevron_right
Learn2Evade: Learning-Based Generative Model for Evading PDF Malware Classifiers
Ho Bae

IEEE Transactions on Artificial Intelligence, 2021

Recent research has shown that a small perturbation to an input may forcibly change the prediction of a machine learning (ML) model. Such variants are commonly referred to as adversarial examples. Early studies have focused mostly on ML models for image processing and expanded to other applications, including those for malware classification. In this article, we focus on the problem of finding adversarial examples against ML-based portable document format (PDF) malware classifiers. We deem that our problem is more challenging than those against ML models for image processing because of the highly complex data structure of PDF and of an additional constraint that the generated PDF should exhibit malicious behavior. To resolve our problem, we propose a variant of generative adversarial networks that generate evasive variant PDF malware (without any crash), which can be classified as benign by various existing classifiers yet maintaining the original malicious behavior. Our model exploits the target classifier as the second discriminator to rapidly generate an evasive variant PDF with our new feature selection process that includes unique features extracted from malicious PDF files. We evaluate our technique against three representative PDF malware classifiers (Hidost'13, Hidost'16, and PDFrate-v2) and further examine its effectiveness with AntiVirus engines from VirusTotal. To the best of our knowledge, our work is the first to analyze the performance against the commercial AntiVirus engines. Our model finds, with great speed, evasive variants for all selected seeds against state-of-the-art PDF Manuscript

View PDFchevron_right
Towards enhanced PDF maldocs detection with feature engineering: design challenges
Shiva Pokhrel

Multimedia Tools and Applications

In this paper, we perform an in-depth analysis of a large corpus of PDF maldocs to identify the key set of significantly important features and help in maldoc detection. Existing industry-based tools for the detection are inefficient and cannot prevent PDF maldocs because they are generic and depend primarily on a signature-based approach. Besides, several other methods developed by academics suffer heavily from reduced effectiveness. The feature-set using machine learning classifiers is prone to various known attacks, such as mimicry and parser confusion. Also, we discover that increasingly more malicious files i) contain evasive and obfuscated JavaScript code, ii) include hidden contents (mostly outside the objects), iii) have a corrupted document structure, and iv) usually contain short JavaScript code blocks. We utilise maldoc attacks’ evolution over a decade to highlight the essential features (e.g., concept drifts) that impact detectors and classifiers.

View PDFchevron_right

Cited by

Towards Adversarial Malware Detection
Davide Maiorca

ACM Computing Surveys, 2020

Malware still constitutes a major threat in the cybersecurity landscape, also due to the widespread use of infection vectors such as documents. These infection vectors hide embedded malicious code to the victim users, facilitating the use of social engineering techniques to infect their machines. Research showed that machine-learning algorithms provide effective detection mechanisms against such threats, but the existence of an arms race in adversarial settings has recently challenged such systems. In this work, we focus on malware embedded in PDF files as a representative case of such an arms race. We start by providing a comprehensive taxonomy of the different approaches used to generate PDF malware and of the corresponding learning-based detection systems. We then categorize threats specifically targeted against learning-based PDF malware detectors using a well-established framework in the field of adversarial machine learning. This framework allows us to categorize known vulnera...

View PDFchevron_right
Content Disarm and Reconstruction of PDF Files
Ran Dubin

IEEE Access

Content Disarm and Reconstruction (CDR) is a zero-trust file methodology that proactively extracts threat attack vectors from documents and media files. While extensive literature on CDR emphasizes its importance, a detailed discussion of how the CDR process works, its effectiveness, and its drawbacks is not presented. Therefore, this paper presents PdfCDR, the first PDF CDR system in which the validation, the prevention rate, and the received visual similarity effect of disarming and reconstruction are presented and measured. Furthermore, PdfCDR suggests for the first time a novel method dealing with new emerging exploits by automatically converting detection rules to disarm and reconstruction rules. As a result, PdfCDR can prevent evasive attacks without any software upgrades and utilize the cyber security community knowledge to prevent cyber attacks as soon as they are advertised. The effectiveness of the novel PdfCDR against well-known PDF datasets shows that it disarmed not only the malicious components, but the reconstructed file is also usable and functional. However, since CDR relies on understanding the file format, any CDR solution should handle each supported file type separately due to the vast difference in each file format. Hence, this paper focuses on the Portable Document Format (PDF) file type that attackers commonly exploit. The results indicate that PdfCDR successfully CDR 90% of the malicious files while the remaining 10% were encrypted or had abnormal structures compared to the standard and were quarantined.

View PDFchevron_right
Towards enhanced PDF maldocs detection with feature engineering: design challenges
Shiva Pokhrel

Multimedia Tools and Applications

In this paper, we perform an in-depth analysis of a large corpus of PDF maldocs to identify the key set of significantly important features and help in maldoc detection. Existing industry-based tools for the detection are inefficient and cannot prevent PDF maldocs because they are generic and depend primarily on a signature-based approach. Besides, several other methods developed by academics suffer heavily from reduced effectiveness. The feature-set using machine learning classifiers is prone to various known attacks, such as mimicry and parser confusion. Also, we discover that increasingly more malicious files i) contain evasive and obfuscated JavaScript code, ii) include hidden contents (mostly outside the objects), iii) have a corrupted document structure, and iv) usually contain short JavaScript code blocks. We utilise maldoc attacks’ evolution over a decade to highlight the essential features (e.g., concept drifts) that impact detectors and classifiers.

View PDFchevron_right
580 California St., Suite 400
San Francisco, CA, 94104
© 2025 Academia. All rights reserved