Sciweavers

CCS
2015
ACM

LOOP: Logic-Oriented Opaque Predicate Detection in Obfuscated Binary Code

8 years 8 months ago
LOOP: Logic-Oriented Opaque Predicate Detection in Obfuscated Binary Code
Opaque predicates have been widely used to insert superfluous branches for control flow obfuscation. Opaque predicates can be seamlessly applied together with other obfuscation methods such as junk code to turn reverse engineering attempts into arduous work. Previous efforts in detecting opaque predicates are far from mature. They are either ad hoc, designed for a specific problem, or have a considerably high error rate. This paper introduces LOOP, a Logic Oriented Opaque Predicate detection tool for obfuscated binary code. Being different from previous work, we do not rely on any heuristics; instead we construct general logical formulas, which represent the intrinsic characteristics of opaque predicates, by symbolic execution along a trace. We then solve these formulas with a constraint solver. The result accurately answers whether the predicate under examination is opaque or not. In addition, LOOP is obfuscation resilient and able to detect previously unknown opaque predicates....
Jiang Ming, Dongpeng Xu, Li Wang, Dinghao Wu
Added 17 Apr 2016
Updated 17 Apr 2016
Type Journal
Year 2015
Where CCS
Authors Jiang Ming, Dongpeng Xu, Li Wang, Dinghao Wu
Comments (0)