Improvements on Hiding x86-64 Instructions by Interleaving
DOI:
https://doi.org/10.34190/iccws.18.1.987Abstract
This paper presents the results of a new method for interleaving CPU instructions in x86-64 machine code, such that one can hide executable code within other valid instructions. The aim is to make it more difficult to reverse-engineer software at a machine code level – to obfuscate instructions. A result is a hidden execution path within a visible main instruction path. While previous methods for this instruction obfuscation exist, we present a new method which builds upon past work, and which allows a greater flexibility in the selection of main instruction path instructions. The result of this new approach is to provide a methodology for instruction concealment which is free of restrictions present in prior work.Downloads
Published
2023-02-28
Issue
Section
Academic Papers
License
Copyright (c) 2023 William Mahoney, Todd McDonald, George Grispos, Sayonnha Mandal

This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.