An executable file can be determined to be malicious based, at least in part, on the presence of a computer generated text string as a function name, method name, or variable name. The attributes of the function names, method names, and variable names in an executable file can be determined. The attributes can include the ratio of consonants to vowels for at least one text string in the executable file. The attributes may also include the number of consonants in a sequence uninterrupted by a vowel for at least one text string in the executable file. If the attributes indicate that a function name, method name or variable name has been computer generated, the executable file can be labeled as potentially malicious.