Detection of Obfuscated Malicious Java']JavaScript Code

被引：11

作者：

Alazab, Ammar ^{[1
]}

Khraisat, Ansam ^{[1
]}

Alazab, Moutaz ^{[2
]}

Singh, Sarabjot ^{[1
]}

机构：

[1] Melbourne Inst Technol, Sch Informat Technol & Engn, Melbourne, Vic 3000, Australia

[2] Balqa Appl Univ, Fac Artificial Intelligence, Amman 1705, Jordan

来源：

FUTURE INTERNET | 2022年 / 14卷 / 08期

关键词：

malware detection; intrusion detection; obfuscated malicious; machine learning; malicious [!text type='Java']Java[!/text]Script;

D O I：

10.3390/fi14080217

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Websites on the Internet are becoming increasingly vulnerable to malicious JavaScript code because of its strong impact and dramatic effect. Numerous recent cyberattacks use JavaScript vulnerabilities, and in some cases employ obfuscation to conceal their malice and elude detection. To secure Internet users, an adequate intrusion-detection system (IDS) for malicious JavaScript must be developed. This paper proposes an automatic IDS of obfuscated JavaScript that employs several features and machine-learning techniques that effectively distinguish malicious and benign JavaScript codes. We also present a new set of features, which can detect obfuscation in JavaScript. The features are selected based on identifying obfuscation, a popular method to bypass conventional malware detection systems. The performance of the suggested approach has been tested on JavaScript obfuscation attacks. The studies have shown that IDS based on selected features has a detection rate of 94% for malicious samples and 81% for benign samples within the dimension of the feature vector of 60.

引用

页数：15

共 50 条

[1] Obfuscated Malicious Java']JavaScript Detection by Machine Learning
Pan, Jinkun
Mao, Xiaoguang
[J]. PROCEEDINGS OF THE 2ND INTERNATIONAL CONFERENCE ON ADVANCES IN MECHANICAL ENGINEERING AND INDUSTRIAL INFORMATICS (AMEII 2016), 2016, 73 : 805 - 810
[2] Obfuscated Malicious Java']Javascript Detection using Classification Techniques
Likarish, Peter
Jung, Eunjin E. J.
Jo, Insoon
[J]. 2009 4TH INTERNATIONAL CONFERENCE ON MALICIOUS AND UNWANTED SOFTWARE (MALWARE 2009), 2009, : 47 - +
[3] JAST: Fully Syntactic Detection of Malicious (Obfuscated) Java']JavaScript
Fass, Aurore
Krawczyk, Robert P.
Backes, Michael
Stock, Ben
[J]. DETECTION OF INTRUSIONS AND MALWARE, AND VULNERABILITY ASSESSMENT, DIMVA 2018, 2018, 10885 : 303 - 325
[4] On improvements of robustness of obfuscated Java']JavaScript code detection
Ponomarenko, G. S.
Klyucharev, P. G.
[J]. JOURNAL OF COMPUTER VIROLOGY AND HACKING TECHNIQUES, 2023, 19 (03) : 387 - 398
[5] A Half-Dynamic Classification Method on Obfuscated Malicious Java']JavaScript Detection
Fang, Zhaolin
Zhu, Renhuan
Zhang, Weihui
Chen, Bo
[J]. INTERNATIONAL JOURNAL OF SECURITY AND ITS APPLICATIONS, 2015, 9 (06): : 251 - 262
[6] Obfuscated Malicious Java']JavaScript Detection Scheme Using the Feature Based on Divided URL
Morishige, Shoya
Haruta, Shuichiro
Asahina, Hiromu
Sasase, Iwao
[J]. 2017 23RD ASIA-PACIFIC CONFERENCE ON COMMUNICATIONS (APCC): BRIDGING THE METROPOLITAN AND THE REMOTE, 2017, : 518 - 523
[7] TransAST: A Machine Translation-Based Approach for Obfuscated Malicious Java']JavaScript Detection
Qin, Yan
Wang, Weiping
Chen, Zixian
Song, Hong
Zhang, Shigeng
[J]. 2023 53RD ANNUAL IEEE/IFIP INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS AND NETWORKS, DSN, 2023, : 327 - 338
[8] Malicious Java']JavaScript Code Detection Based on Hybrid Analysis
He, Xincheng
Xu, Lei
Cha, Chunliu
[J]. 2018 25TH ASIA-PACIFIC SOFTWARE ENGINEERING CONFERENCE (APSEC 2018), 2018, : 365 - 374
[9] Detecting and De-Obfuscating Obfuscated Malicious JavaScript Code
[J]. Wang, Wei (wangwei1@bjtu.edu.cn), 1699, Science Press (40):
[10] Obfuscated malicious JavaScript detection by causal relations finding
Al-Taharwa, Ismail Adel
Mao, Ching-Hao
Pao, Hsin-Kuo
Wu, Kuo-Ping
Faloutsos, Christos
Lee, Hahn-Ming
Chen, Shyi-Ming
Jeng, Albert B.
[J]. International Conference on Advanced Communication Technology, ICACT, 2011, : 787 - 792

← 1 2 3 4 5 →