This repository contains sample IOCs generated by EIGER, the automated IOC generation system. The IOCs are:
- Composed of file paths, registry keys, and process arguments created by the malware collected in May 2020.
- Written in accordance with OpenIOC v1.1.
- Provided on a no-warranty basis.
Note that the presence of artifacts matching these IOCs on your device does not necessarily mean that the device is infected.
@inproceedings{10.1145/3359789.3359808,
author = {Kurogome, Yuma and Otsuki, Yuto and Kawakoya, Yuhei and Iwamura, Makoto and Hayashi, Syogo and Mori, Tatsuya and Sen, Koushik},
title = {EIGER: Automated IOC Generation for Accurate and Interpretable Endpoint Malware Detection},
year = {2019},
isbn = {9781450376280},
publisher = {Association for Computing Machinery},
address = {New York, NY, USA},
url = {https://doi.org/10.1145/3359789.3359808},
doi = {10.1145/3359789.3359808},
booktitle = {Proceedings of the 35th Annual Computer Security Applications Conference},
pages = {687–701},
numpages = {15},
keywords = {classification, indicator of compromise, malware, detection},
location = {San Juan, Puerto Rico},
series = {ACSAC '19}
}