A Survey on Windows-based Ransomware Taxonomy and Detection Mechanisms: Case Closed?

【Author】 Moussaileb, Routa; Cuppens, Nora; Lanet, Jean-Louis; Le Bouder, Helene

【Source】ACM COMPUTING SURVEYS

【影响因子】14.324

【Abstract】Ransomware remains an alarming threat in the 21st century. It has evolved from being a simple scare tactic into a complex malware capable of evasion. Formerly, end-users were targeted via mass infection campaigns. Nevertheless, in recent years, the attackers have focused on targeted attacks, since the latter are profitable and can induce severe damage. A vast number of detection mechanisms have been proposed in the literature. We provide a systematic review of ransomware countermeasures starting from its deployment on the victim machine until the ransom payment via cryptocurrency. We define four stages of this malware attack: Delivery, Deployment, Destruction, and Dealing. Then, we assign the corresponding countermeasures for each phase of the attack and cluster them by the techniques used. Finally, we propose a roadmap for researchers to fill the gaps found in the literature in ransomware's battle.

【Keywords】Ransomware; malware; system security

【发表时间】2021 JUL

【收录时间】2022-01-02

【文献类型】综述

【主题类别】

区块链治理-技术治理-勒索分析