WIN32 Executable Viruses Detection

Abstract

Computer viruses has been grown rapidly in last few years, corrupted huge number of applications and devices. In the other side, antivirus programming facing the spreading of all types of viruses. This work dedicated for detecting viruses that infect executable files namely (Win 32), because Win32 files like .EXE, .PE widely used in PC’s and networks. This work explains how viruses work, the behavior of viruses, and how infect different types of files, Illustrates many techniques of virus detection, our work is for detecting some types of infected file by exploiting the change in checksum, which occurs when the data of files has changed. Some measurements were using to evaluate our work.