A Survey of Intelligent Malware Detection on Windows Platform

被引:0
|
作者
Wang J. [1 ,2 ]
Zhang C. [1 ,2 ]
Qi X. [3 ]
Rong Y. [4 ]
机构
[1] Institute for Network Sciences and Cyberspace, Tsinghua University, Beijing
[2] Beijing National Research Center for Information Science and Technology, Beijing
[3] State Key Laboratory of Mathematical Engineering and Advanced Computing, Zhengzhou
[4] School of Software, Tsinghua University, Beijing
来源
Jisuanji Yanjiu yu Fazhan/Computer Research and Development | 2021年 / 58卷 / 05期
基金
中国国家自然科学基金;
关键词
Artificial intelligence; Deep learning; Intelligent malware detection; Machine learning; Malware;
D O I
10.7544/issn1000-1239.2021.20200964
中图分类号
学科分类号
摘要
In recent years, malware has brought many negative effects to the development of information technology. In order to solve this problem, how to effectively detect malware has always been a concern. With the rapid development of artificial intelligence, machine learning and deep learning technologies are gradually introduced into the field of malware detection. This type of technology is called intelligent malware detection technology. Compared with traditional detection methods, intelligent detection technology does not need to manually formulate detection rules due to the application of artificial intelligence technology. Besides, intelligent detection technology has stronger generalization capabilities, and can better detect previously unseen malware. Intelligent malware detection has become a research hotspot in the field of detection. This paper mainly introduces current work related to intelligent malware detection, which includes the main parts required for intelligent detection processes. Specifically, we have systematically explained and classified related work for intelligent malware detection in this paper, which includes the features commonly used in intelligent detection, how to perform feature processing, the commonly used classifiers in intelligent detection, and the main problems faced by current malware intelligent detection. Finally, we summarize the full paper and clarify the potential future research directions, aiming to contribute to the development of intelligent malware detection. © 2021, Science Press. All right reserved.
引用
收藏
页码:977 / 994
页数:17
相关论文
共 87 条
  • [1] Gantz J F, Lee R, Florean A, Et al., The link between pirated software and cybersecurity breaches, 247411, (2013)
  • [2] Ye Yanfang, Li Tao, Adjeroh D, Et al., A survey on malware detection using data mining techniques, ACM Computing Surveys (CSUR), 50, 3, (2017)
  • [3] Li Bo, Roundy K, Gates C, Et al., Large-scale identification of malicious singleton files, Proc of the 7th ACM on Conf on Data and Application Security and Privacy, pp. 227-238, (2017)
  • [4] Schultz M G, Eskin E, Zadok F, Et al., Data mining methods for detection of new malicious executables, Proc of 2001 IEEE Symp on Security and Privacy, pp. 38-49, (2000)
  • [5] Kolter J Z, Maloof M A., Learning to detect and classify malicious executables in the wild, Journal of Machine Learning Research, 7, 99, pp. 2721-2744, (2006)
  • [6] Elovici Y, Shabtai A, Moskovitch R, Et al., Applying machine learning techniques for detection of malicious code in network traffic, Proc of Annual Conf on Artificial Intelligence, pp. 44-50, (2007)
  • [7] Menahem E, Shabtai A, Rokach L, Et al., Improving malware detection by applying multi-inducer ensemble, Computational Statistics & Data Analysis, 53, 4, pp. 1483-1494, (2009)
  • [8] Masud M M, Khan L, Thuraisingham B., A scalable multi-level feature extraction technique to detect malicious executables, Information Systems Frontiers, 10, 1, pp. 33-45, (2008)
  • [9] Raff E, Zak R, Cox R, Et al., An investigation of byte n-gram features for malware classification, Journal of Computer Virology and Hacking Techniques, 14, 1, pp. 1-20, (2018)
  • [10] Raff E, Barker J, Sylvester J, Et al., Malware detection by eating a whole exe, Proc of the 32nd AAAI Conf on Artificial Intelligence Workshop, pp. 2-7, (2018)
123456789