Malware architects and rational choice: a case study analysis of three cyber-offenders

This thesis explores the cybercrime of malware through case study research. In doing so, the paper will apply rational choice theory, specifically Cornish and Clarkes (1986) rational choice perspectives, to malware architects Robert Tappan Morris and David Lee Smith, as well as alleged malware architect Evgeniy Mikhailovich Bogachev. As will be demonstrated, each of the three-case examples, spread over four decades,have contributed to the development of future malware through their architecture and design, providing a critical timeline of events and motivation. The primary aim of the research is to establish whether rational choice is an appropriate theory to apply to malware architects. As such, this thesis explores a variety of complex issues, with the intention of gaining insights into why malware architects commit their crimes. This thesis is intended to help fill a gap in criminological knowledge regarding malware and provide a pathway to future research into malware and malware architects.