A structured approach to malware detection and analysis in digital forensics investigation

A thesis submitted to the University of Bedfordshire in partial fulfilment of the requirement for the degree of PhDWithin the World Wide Web (WWW), malware is considered one of the most serious threats to system security with complex system issues caused by malware and spam. Networks and systems can be accessed and compromised by various types of malware, such as viruses, worms, Trojans, botnet and rootkits, which compromise systems through coordinated attacks. Malware often uses anti-forensic techniques to avoid detection and investigation. Moreover, the results of investigating such attacks are often ineffective and can create barriers for obtaining clear evidence due to the lack of sufficient tools and the immaturity of forensics methodology. This research addressed various complexities faced by investigators in the detection and analysis of malware. In this thesis, the author identified the need for a new approach towards malware detection that focuses on a robust framework, and proposed a solution based on an extensive literature review and market research analysis. The literature review focussed on the different trials and techniques in malware detection to identify the parameters for developing a solution design, while market research was carried out to understand the precise nature of the current problem. The author termed the new approaches and development of the new framework the triple-tier centralised online real-time environment (tri-CORE) malware analysis (TCMA). The tiers come from three distinctive phases of detection and analysis where the entire research pattern is divided into three different domains. The tiers are the malware acquisition function, detection and analysis, and the database operational function. This framework design will contribute to the field of computer forensics by making the investigative process more effective and efficient. By integrating a hybrid method for malware detection, associated limitations with both static and dynamic methods are eliminated. This aids forensics experts with carrying out quick, investigatory processes to detect the behaviour of the malware and its related elements. The proposed framework will help to ensure system confidentiality, integrity, availability and accountability. The current research also focussed on a prototype (artefact) that was developed in favour of a different approach in digital forensics and malware detection methods. As such, a new Toolkit was designed and implemented, which is based on a simple architectural structure and built from open source software that can help investigators develop the skills to critically respond to current cyber incidents and analyses

Hydrogen sulfide counteract copper induced inhibition of photosynthetic performance through altered proline metabolism and enhanced antioxidants in Cucumis sativus

It has been recently discovered that hydrogen sulfide (H2S) is a gaseous substance responsible for controlling the growth and metabolism of plants. The present study was designed to explore the ameliorative effect of H2S on Cucumis sativus plants under increasing levels of copper. This study revealed that varying concentrations of H2S improved seed germination in a concentration-dependent manner. Furthermore, exogenous application of H2S to copper stressed plants accelerated photosynthetic performance, antioxidant system, proline accumulation, and maintained copper uptake that was reflected in improved growth parameters. In addition to this, H2S also curbed oxidative stress by lowering lipid peroxidation, H2O2 content, and electrolyte leakage. H2S enhanced activities of the antioxidant system, and proline metabolism leading to decontamination of cucumber plants under lethal dose of copper. This work offers an understanding that exogenously sourced H2S could be engaged as a significant biochemical approach in alleviating copper-induced toxicity in cucumber plants

The genomic history of the Middle East

The Middle East region is important to understand human evolution and migrations but is underrepresented in genomic studies. Here, we generated 137 high-coverage physically phased genome sequences from eight Middle Eastern populations using linked-read sequencing. We found no genetic traces of early expansions out-of-Africa in present-day populations but found Arabians have elevated Basal Eurasian ancestry that dilutes their Neanderthal ancestry. Population sizes within the region started diverging 15–20 kya, when Levantines expanded while Arabians maintained smaller populations that derived ancestry from local hunter-gatherers. Arabians suffered a population bottleneck around the aridification of Arabia 6 kya, while Levantines had a distinct bottleneck overlapping the 4.2 kya aridification event. We found an association between movement and admixture of populations in the region and the spread of Semitic languages. Finally, we identify variants that show evidence of selection, including polygenic selection. Our results provide detailed insights into the genomic and selective histories of the Middle East

A qualitative study of pharmacists' perceptions regarding the implementation of automated pharmacy dispensing systems in the United Arab Emirates' hospitals.

Background and Objective: Automated dispensing systems (ADS) are one of the strategies used in pharmacy to enhance medication management effectiveness and efficiency, hence curb the consequences of medication errors1. In the United Arab Emirates (UAE), ADS has been widely implemented, yet pharmacists’ perceptions and views regarding ADS and the barriers and facilitators concerning its implementation are not clearly reported in the literature. The aim of this study is three-folds: (1) explore hospital outpatient pharmacists’ perception regarding ADS (2) explore the readiness of pharmacists to embrace the change 3) explore the facilitators and barriers towards the implementation of ADS. Method: A phenomenological qualitative approach was adopted using audio-recorded semi-structured interviews. Participants were recruited purposefully, and snowball sampling was utilized as well. To be eligible, the interviewee should be an outpatient pharmacist in an acute care hospital and have witnessed ADS's pre and post-implementation. The topic guide which was piloted was underpinned by the merits of the Consolidated Framework for Implementation Research (CFIR) and surveyed literature. Interviews were transcribed and analyzed independently by two researchers using CFIR2. Main outcome measures: Outcomes included the perspectives and views of participants in relation to ADS implementation in outpatient setting of acute care hospitals in UAE. Results: Eight interviews (approximately 15–20 minutes) were conducted with outpatient pharmacists from two governmental and two private sector hospitals where the point of saturation was achieved. Several benefits were reported such as; avoiding medication errors, less workload, better time effectiveness and inventory management. It was also found to enhance patient satisfaction by decreasing waiting time and allowing more time for the pharmacist to counsel the patient. Yet, ADS implementation was found to be challenging in terms of financial requirements, structural and infrastructure changes, training and continuous technical support. Facilitators reported are; financial support, leadership and pharmacy staff engagement. Barriers are fear of job loss, lack of pharmacy space to install ADS and no observed benefits in pharmacies with low dispensing rate. Conclusion: ADS were found to be beneficial especially in facilities with high dispensing rates. Engaging staff and leadership is expected to facilitate implementation allowing more time for the pharmacist to focus on pharmaceutical care and patient safety

Mutation Rate Analysis of RM Y-STRs in Deep-Rooted Multi-Generational Punjabi Pedigrees from Pakistan

Y chromosome short tandem repeat polymorphisms (Y-STRs) are important in many areas of human genetics. Y chromosomal STRs, being normally utilized in the field of forensics, exhibit low haplotype diversity in consanguineous populations and fail to discriminate among male relatives from the same pedigree. Rapidly mutating Y-STRs (RM Y-STRs) have received much attention in the past decade. These 13 RM Y-STRs have high mutation rates (>10−2) and have considerably higher haplotype diversity and discrimination capacity than conventionally used Y-STRs, showing remarkable power when it comes to differentiation in paternal lineages in endogamous populations. Previously, we analyzed two to four generations of 99 pedigrees with 1568 pairs of men covering one to six meioses from all over Pakistan and 216 male relatives from 18 deep-rooted endogamous Sindhi pedigrees covering one to seven meioses. Here, we present 861 pairs of men from 62 endogamous pedigrees covering one to six meioses from the Punjabi population of Punjab, Pakistan. Mutations were frequently observed at DYF399 and DYF403, while no mutation was observed at DYS526a/b. The rate of differentiation ranged from 29.70% (first meiosis) to 80.95% (fifth meiosis), while overall (first to sixth meiosis) differentiation was 59.46%. Combining previously published data with newly generated data, the overall differentiation rate was 38.79% based on 5176 pairs of men related by 1–20 meioses, while Yfiler differentiation was 9.24% based on 3864 pairs. Using father–son pair data from the present and previous studies, we also provide updated RM Y-STR mutation rates