RansomAI: AI-powered Ransomware for Stealthy Encryption

被引:0
|
作者
von der Assen, Jan [1 ]
Celdran, Alberto Huertas [1 ]
Luechinger, Janik [1 ]
Sanchez, Pedro Miguel Sanchez [2 ]
Bovet, Gerome [3 ]
Perez, Gregorio Marinez [2 ]
Stiller, Burkhard [1 ]
机构
[1] Univ Zurich UZH, Dept Informat, Commun Syst Grp CSG, CH-8050 Zurich, Switzerland
[2] Univ Murcia, Dept Informat & Commun Engn, Murcia 30100, Spain
[3] Cyber Def Campus Armasuisse Sci & Technol, CH-3602 Thun, Switzerland
关键词
Ransomware; Reinforcement Learning; Artificial Intelligence; Malware; Evasion; MALWARE;
D O I
10.1109/GLOBECOM54140.2023.10437393
中图分类号
TM [电工技术]; TN [电子技术、通信技术];
学科分类号
0808 ; 0809 ;
摘要
Cybersecurity solutions have shown promising performance when detecting ransomware samples that use fixed algorithms and encryption rates. However, due to the current explosion of Artificial Intelligence (AI), sooner than later, ransomware, and malware in general, will incorporate AI techniques to intelligently and dynamically adapt its behavior to be undetected. It might result in ineffective and obsolete cybersecurity solutions, but the literature lacks AI-powered ransomware samples to verify it. Thus, this work proposes RansomAI, a Reinforcement Learning-based framework that can be integrated into existing ransomware samples to adapt their encryption behavior and stay stealthy while encrypting files. RansomAI presents an agent that learns the best encryption algorithm, rate, and duration that minimizes its detection (using a reward mechanism and a fingerprinting intelligent detection system) while maximizing its damage. The proposed framework was validated with Ransomware-PoC, a ransomware that infected a Raspberry Pi 4 acting as a crowdsensor. A pool of experiments with Deep Q-Learning and Isolation Forest (deployed on the agent and detection system, respectively) has demonstrated that RansomAI evades the detection of Ransomware-PoC affecting the Raspberry Pi 4 in a few minutes with >90% accuracy.
引用
收藏
页码:2578 / 2583
页数:6
相关论文
共 50 条
  • [31] MindMe: an AI-Powered personality assessment tool
    Chun-Hsiung Tseng
    Hao-Chiang Koong Lin
    Andrew Chih-Wei Huang
    Yung-Hui Chen
    Jia-Rou Lin
    [J]. Multimedia Tools and Applications, 2024, 83 : 35943 - 35955
  • [32] Revolutionizing pharmacokinetics: the dawn of AI-powered analysis
    Ghayoor, Ali
    Kohan, Hamed Gilzad
    [J]. JOURNAL OF PHARMACY AND PHARMACEUTICAL SCIENCES, 2024, 27
  • [33] The artist in the machine: the world of AI-powered creativity
    Maceviciute, Elena
    [J]. INFORMATION RESEARCH-AN INTERNATIONAL ELECTRONIC JOURNAL, 2020, 25 (02):
  • [34] NeurDB: an AI-powered autonomous data system
    Beng Chin OOI
    Shaofeng CAI
    Gang CHEN
    Yanyan SHEN
    KianLee TAN
    Yuncheng WU
    Xiaokui XIAO
    Naili XING
    Cong YUE
    Lingze ZENG
    Meihui ZHANG
    Zhanhao ZHAO
    [J]. Science China(Information Sciences), 2024, 67 (10) : 129 - 150
  • [35] AI-powered banana diseases and pest detection
    Michael Gomez Selvaraj
    Alejandro Vergara
    Henry Ruiz
    Nancy Safari
    Sivalingam Elayabalan
    Walter Ocimati
    Guy Blomme
    [J]. Plant Methods, 15
  • [36] AquaVision: AI-Powered Marine Species Identification
    Scicluna, Benjamin Mifsud
    Gauci, Adam
    Deidun, Alan
    [J]. INFORMATION, 2024, 15 (08)
  • [37] Ethical AI-Powered Regression Test Selection
    Strandberg, Per Erik
    Frasheri, Mirgita
    Enoiu, Eduard Paul
    [J]. THIRD IEEE INTERNATIONAL CONFERENCE ON ARTIFICIAL INTELLIGENCE TESTING (AITEST 2021), 2021, : 83 - 84
  • [39] How to support the transition to AI-powered healthcare
    不详
    [J]. NATURE MEDICINE, 2024, 30 (03) : 609 - 610
  • [40] An AI-powered approach to the semiotic reconstruction of narratives
    de Lima, Edirlei Soares
    Neggers, Margot M.E.
    Feijó, Bruno
    Casanova, Marco A.
    Furtado, Antonio L.
    [J]. Entertainment Computing, 2025, 52