ABSTRACT
Software, and particularly malicious software, has traditionally been viewed in terms of a tool for the attacker. The only value that has been apparent in the study of such software is in regard to protection against malicious code. However, experience in the virus research field, and more recent studies in detecting plagiarism, indicates that we can obtain evidence of intention as well as cultural and individual identity from examination of software itself.
